Went through a tutorial on
certificates in IIS. Installed two certificate
role services – the CA and Web Enrollment. I’m not entirely clear on the difference between an Enterprise CA and a
Stand-Alone CA, so am installing an Enterprise CA in my lab.
Enabled SSL on the default website. Enrolled a user certificate via the web site. Found that out-of-the-box, I was missing some authentication methods, so added ‘em via the Roles & Services wizard. Successfully enabled the requirement to authenticate to Active Directory via basic authentication over SSL *and* posess a user certificate.