-
Create a .reg file and run it as an administrator or edit registry manually to configure the AD CS to use the private key stored in the HSM
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\CertSvc\Configuration\<CaName>\CSP] "Provider"="Utimaco CryptoServer Key Storage Provider"
-
Start the service and check the status of the AD CS
|
›_ Console |
|---|
|
-
Verify that the CA service has successfully started by running the command
|
›_ Console |
|---|
|
-
Verify the CA key by running the command:
|
›_ Console |
|---|
|
If you are using Smartcard Authentication, the prompt will go on the PIN Pad device to insert Smartcard and enter the pin. Then press OK button on the PIN Pad.