-
Create a .reg file and run it as an administrator or edit registry manually to configure the AD CS to use the private key stored in the HSM.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\CertSvc\Configurat ion\<CaName>\CSP] "Provider"="Utimaco CryptoServer Key Storage Provider"
-
Start the service and check the status of the AD CS.
|
›_ Console |
|
-
Verify that the CA service has successfully started by running the command.
|
›_ Console |
|
-
Verify the CA key by running the command:
|
›_ Console |
|
If you are using smartcard authentication, the prompt will appear on the PIN Pad device to insert the smartcard and enter the PIN. Then, press the OK button on the PIN Pad.