tailieunhanh - mcsa mcse exam 70-296 study guide phần 4

, tuy nhiên, có một số cân nhắc để giữ trong tâm trí trước khi bạn làm như vậy. Đầu tiên và rõ ràng nhất, loại bỏ một miền Active Directory sẽ vĩnh viễn tiêu diệt bất kỳ người dùng, nhóm, và tài khoản máy tính được lưu trữ trong miền đó. Ngoài ra, nếu bạn đang loại bỏ các tên miền cuối cùng trong một khu rừng | Implementing PKI in a Windows Server 2003 Network Chapter 4 217 Head of the Class. Separating Web Enrollment from the CA Server In some environments it could be beneficial to separate the Web enrollment server from the CA server. For example you might not want to have the IIS service running on a domain controller that is also functioning as a CA server for security purposes specifically that Active Server Pages ASP must be enabled on the IIS server in order for Web enrollment to function. For this reason a separate Windows Server 2003 server can be configured to function as the front-end Web enrollment server for the PKI. If you should choose to install the Web enrollment pages on a separate computer from the CA the computer account must be trusted for delegation within Active Directory. For more information on delegation see technet treeview url technet prodtechnol windowsserver2003 proddocs entserver 538 .asp. For more information on using a separate server for Web enrollment services go to technet treeview url technet prodtechnol windowsserver2003 proddocs standard . Autoenrollment The Microsoft marketing platform for Windows Server 2003 is The Windows Server 2003 family helps organizations do more with less. One of the ways that Windows Server 2003 helps you do more with less is through the use of certificate autoenrollment which is defined as a process for obtaining storing and updating the certificates for subjects without administrator or user intervention. Certificate autoenrollment allows clients to automatically submit certificate requests and retrieve and store certificates. Autoenrollment is managed by the administrator or other staff members who have been delegated authority through the use of certificate templates so that certificates are obtained by the appropriate target and for the appropriate purpose. Autoenrollment also provides for automated renewal of .