This blog post finishes a Certificate Autoenrollment in Windows Server 2016 blog post series. Here is a list of posts in the series:

First part makes introduction to certificate autoenrollment and describes certificate enrollment architecture in Windows 10 and Windows Server 2016.

Second part explains certificate autoenrollment architecture, its components and detailed processing rules.

Third part provides a step-by-step guide on configuring and utilizing certificate autoenrollment feature.

The last part provides information about advanced certificate autoenrollment features, scenarios and troubleshooting guide. Next section contains a list of reference documents used to write this whitepaper.


* — the link is dead. No replacement link is available.


Here is full-featured printable version of the whitepaper:

Share this article:


Christopher Ursich

Vadims, thank you very much for writing this excellent resource.  The PDF version was especially convenient.

Glenn Poole

Vadims, in a the myterious and confusing world of Microsoft PKI, you have given us depth, clarity and a very usable resource. I agree, it is an "excellent resource" indeed. Thank you very much for sharing your expertise.

Post your comment:

Please, solve this little equation and enter result below. Captcha