Certificate Enrollment Web Service

E724319

Windows Server role service certificate enrollment service

Certificate Enrollment Web Service is a Windows server role service that enables certificate enrollment and renewal over HTTPS, typically used with Active Directory Certificate Services to support remote and policy-based certificate requests.

Jump to: Statements Referenced by

Statements (47)

Predicate	Object
instanceOf	Windows Server role service ⓘ certificate enrollment service ⓘ
category	PKI component ⓘ security infrastructure component ⓘ
communicatesWith	Certification Authority NERFINISHED ⓘ
configuredUsing	PowerShell NERFINISHED ⓘ Server Manager NERFINISHED ⓘ certutil ⓘ
dependsOn	Active Directory (for domain scenarios) NERFINISHED ⓘ
enables	enrollment over HTTPS ⓘ policy-based certificate requests ⓘ remote certificate requests ⓘ
exposes	SOAP-based web methods (version-dependent) ⓘ
exposesInterface	web service endpoint ⓘ
introducedIn	Windows Server 2008 R2 NERFINISHED ⓘ
managedBy	Public Key Infrastructure administrators ⓘ
partOf	Active Directory Certificate Services NERFINISHED ⓘ
requires	IIS NERFINISHED ⓘ SSL certificate ⓘ network connectivity to CA ⓘ service account ⓘ
roleOf	front-end for AD CS certificate enrollment ⓘ
runsOn	Windows Server NERFINISHED ⓘ
securedBy	HTTPS transport security ⓘ
supportsAuthentication	Kerberos NERFINISHED ⓘ client certificate authentication ⓘ username/password ⓘ
supportsClientSoftware	Certificate Enrollment Control (XCEP/SCEP-aware clients) ⓘ Windows autoenrollment ⓘ certreq ⓘ
supportsClientType	domain-joined clients ⓘ non-domain-joined clients ⓘ remote clients ⓘ
supportsFeature	certificate template-based requests ⓘ key archival (when enabled on CA) ⓘ policy-based enrollment restrictions ⓘ renewal of existing certificates ⓘ
supportsOperation	certificate enrollment ⓘ certificate renewal ⓘ
supportsProtocol	HTTPS ⓘ
supportsScenario	cross-forest certificate enrollment ⓘ internet-facing certificate enrollment ⓘ workgroup computer enrollment ⓘ
usedWith	Active Directory Certificate Services Certification Authority NERFINISHED ⓘ Certificate Enrollment Policy Web Service ⓘ
usesProtocol	DCOM to CA (in some configurations) ⓘ
usesStandard	X.509 certificates NERFINISHED ⓘ

Referenced by (1)

Full triples — surface form annotated when it differs from this entity's canonical label.

Active Directory Certificate Services → component → Certificate Enrollment Web Service ⓘ