Search This Blog

Wednesday, November 16, 2011

AD CS: Restricted Enrollment Agent

AD CS: Restricted Enrollment Agent
http://technet.microsoft.com/en-us/library/cc753800(WS.10).aspx

quote""

What does the restricted enrollment agent do?

Enrollment agents are one or more authorized individuals within an organization. The enrollment agent needs to be issued an enrollment agent certificate, which enables the agent to enroll for smart card certificates on behalf of users. Enrollment agents are typically members of the corporate security, Information Technology (IT) security, or help desk teams because these individuals have already been trusted with safeguarding valuable resources. In some organizations, such as banks that have many branches, help desk and security workers might not be conveniently located to perform this task. In this case, designating a branch manager or other trusted employee to act as an enrollment agent is required to enable smart card credentials to be issued from multiple locations

No comments:

Post a Comment