Multi-Factor Authentication and Certificate Server Protocols Scenario

Protocols used to enable strong authentication methods and simplified public key infrastructure deployment to Windows clients and servers.

Specification	Description
[MS-CRTD]: Certificate Templates Structure	Specifies the Certificate Templates Structure. This structure describes the syntax and interpretation of certificate templates, which forms the basis of certificate management for the Certificate Templates Protocol.
[MS-CSRA]: Certificate Services Remote Administration Protocol Specification	Specifies the Certificate Services Remote Administration Protocol, which consists of a set of Distributed Component Object Model (DCOM) interfaces that enable administrative tools to configure the state and policy of a certification authority (CA) on a server.
[MS-CSSP]: Credential Security Support Provider (CredSSP) Protocol Specification	Specifies the Credential Security Support Provider (CredSSP) Protocol, which enables an application to securely delegate a user's credentials from a client to a target server.
[MS-OCSP]: Online Certificate Status Protocol (OCSP) Extensions	Specifies the Online Certificate Status Protocol (OCSP) Extensions, which define the data that needs to be exchanged between an application that checks the status of a certificate and the responder that provides the status.
[MS-RCMP]: Remote Certificate Mapping Protocol Specification	Specifies the Remote Certificate Mapping Protocol, which enables servers to use a directory, database, or other technology to map the user's X.509 certificate to a security principal.
[MS-WCCE]: Windows Client Certificate Enrollment Protocol Specification	Specifies a Microsoft protocol that consists of a set of DCOM interfaces that allow clients to request various services from a certification authority (CA). These services enable X.509 (as specified in [X509]) digital certificate enrollment, issuance, revocation, and property retrieval.
[MS-WSTEP]: WS-Trust X.509v3 Token Enrollment Extensions	Specifies the WS-Trust Enrollment Extensions, also known as WSTEP. The protocol specification defines the message formats and server behavior for the purposes of certificate enrollment.
[MS-XCEP]: X.509 Certificate Enrollment Policy Protocol Specification	Specifies the X.509 Certificate Enrollment Policy Protocol. This protocol defines the interactions between a requesting client and a responding server for the exchange of a certificate enrollment policy, which is the collection of certificate templates and certificate issuers available to the requestor for X.509 certificate enrollment.