Domain controller certificate

Each domain controller that is going to authenticate smartcard users must have a domain controller certificate. Request and install a domain controller certificate on each domain controller.

If you install a Microsoft Enterprise CA in an AD forest, all domain controllers automatically enroll for a domain controller certificate.

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

Import the issuing CA certificate into the Enterprise NTAuth store

Enable smart card logon