Domain Controller Certificate Requirements


In order to install an SSL certificate, a domain controller certificate should be obtained from the service provide i.e., Microsoft in this case. And these domain controller certificates should be issued after the eligibility requirements given out by the service provider in the form of domain controller certificate requirements.

Minimum criteria to be met by all Domain Controller certificate applicants:

Applicants who are desirous of replacing the domain from the previous 2003 to the latest 2008, should meet with the following given requirements:

a)      Applicants must firstly add the latest 2008 servers in their domain.

b)      The applicants should replace the existing domain controller certificate with a new domain controller certificate

c)      The new domain controller certificates should be installed with their newly assigned roles

d)     Applicants should also read up on the instance or environment that should be hosted on the new server to obtain the domain controller certificate.

Other requirements to obtain a Domain Controller certificate:

  1. The domain controller certificate should be obtained from the third party certification authority and should be free of any bias.
  2. The domain controller certificate should also have a CRL distribution point extension where CRL refers to the certificate revocation list.
  3. The subject of the domain controller certificate should refer to the path or directory of the server.
  4. The domain controller certificate should have a mandatory digital certificate and a primary key that can be used to code and decode the encrypted messages.
  5. The domain controller certificate should also contain authentication from the client and also the server.
  6. Every domain controller certificate should be identified with a global identification and must be referred with a Domain Name system.
  7. The domain controller certificate should have an extension with the BMP data value.
  8. And the last requirement is that the domain controller certificate should be installed in the local computer’s certificate storage area.


Leave a Reply

Your email address will not be published. Required fields are marked *