The Auto Enrollment Proxy (AEP) for Windows allows users and computers in a Microsoft WindowsÂ® domain to automatically enroll for certificates issued from Red Hat Certificate System.
Designed to integrate seamlessly with your existing Windows infrastructure, the AEP module minimizes the amount of administration:
- Users and computers registered in a Windows domain can automatically discover the location of the proxy on their network
- Computers in a domain can automatically compose a certificate request, and submit it to a Red Hat Certificate System CA via the proxy
- The Kerberos authentication mechanism built into Windows authenticates these certificate requests
- When the CA issue a certificate, it is automatically installed into the requesting application
This solution can issue certificates for domain controllers (including backup controllers), web servers, computers, and users.
Setting up the Auto Enrollment Proxy for Windows requires just two steps:
- Install the proxy on one machine in your domain
- Configure it to connect and authenticate to a Red Hat Certificate System CA
Once installed, all domain members may then utilize the Windows auto enrollment features to enroll for certificates.
The following pages provide additional details on the AEP project:
- Protocol details to save the time of other developers who wish to understand auto-enrollment details
- External resources with information about Auto Enrollment and DCOM programming