Autoenrollment of certificates from another AD forest.

Cobion 111 Reputation points
2021-09-23T05:38:38.43+00:00

Hello everybody!
There are two forests corp. local and trade.ru.
In the corp. local forest, there is a subdomain fd. corp. local in which users and computers are located.
In the forest trade.ru The PKI infrastructure is deployed with root standalone and Enterprise Issuer CA.
802.1 x technology has been deployed for Wi-Fi devices, including certificates. But, since it is not possible to use your own PKI infrastructure in the subdomain and the fd.corp.local forest, you have to install certificates for Computer and User manually, because the PKI is located in another forest trade.ru. There is also no way to configure trusts between forests.
[b]Question:[/b]Tell me, is there another option to configure Autoenrollment for domain PCs, if the PKI is located in another domain of the forest?
If not, then maybe there is another mechanism for installing certificates on a PC in the storage, taking into account the fact that each PC must have its own certificate?

Windows Server
Windows Server
A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.
12,170 questions
Windows Hardware Performance
Windows Hardware Performance
Windows: A family of Microsoft operating systems that run across personal computers, tablets, laptops, phones, internet of things devices, self-contained mixed reality headsets, large collaboration screens, and other devices.Hardware Performance: Delivering / providing hardware or hardware systems or adjusting / adapting hardware or hardware systems.
1,546 questions
0 comments