Skip to main content

Microsoft ADCS

SecTrail CM integrates with Microsoft Active Directory Certificate Services (ADCS) to enable automatic requesting and management of enterprise SSL/TLS certificates.

Connection Requirements​

RequirementDetailDescription
ProtocolHTTPSCertificate Enrollment Web Service is used
Port443 (default)Standard HTTPS port
AuthenticationNTLM / Kerberos authenticationWindows authentication
User PermissionCertificate request and enrollmentCertificate request and enrollment permission

Automatic Operations​

SecTrail CM automatically performs the following operations on Microsoft ADCS:

  1. Certificate Request: CSR submission
  2. Certificate Enrollment: Certificate issuance through ADCS
  3. Template Management: Using different certificate templates
  4. Automatic Approval: Automatic approval for configured templates

Configuration Steps​

1. Add ADCS Service​

Navigate to Integrations > ADCS and click the Add New ADCS Service button:

Add ADCS Service

Enter the following information:

  • Domain Name: Active Directory domain name
  • Hostname: Hostname of the ADCS server
  • Username: Username for ADCS access
  • Password: User password
  • Port: ADCS Web Enrollment service port (default: 443)
  • Priority: Service priority level (between 1-10)
  • Auth Method: Authentication method (NTLM / Kerberos)

Click Submit button to save the service.

2. View ADCS Services​

After adding a service, it will be displayed in the Integrations > ADCS list:

ADCS Service List

The list screen displays the following information:

  • Domain Name: Active Directory domain name
  • Hostname: ADCS server address
  • Username: Connection username
  • Port: Service port
  • Priority: Priority level
  • Templates: Available certificate templates

Service Operations​

The following operations can be performed for each service:

  • Refresh: Refresh service information and template list
  • Edit: Edit service settings
  • Delete: Delete service
Certificate Signing

With ADCS integration, you can perform certificate signing with your desired template. Template selection determines the certificate's validity period, purpose, and security level.