Mastering Public Key Infrastructure (PKI)

MS1000 | 3 days | €795All prices exclude VAT.

This three-day instructor-led training provides in-depth training on designing, configuring and troubleshooting Active Directory Certificate Services (PKI) in Windows Server OS.


Public Key Infrastructure (PKI) becomes a critical component of every enterprise IT infrastructure when it comes to confidentiality, data integrity and security in general.  Every single organization today is using more or less PKI components – it might be only for Web Servers (HTTPS), data encryption (SQL encryption) or it might be even for user’s authentication (Smart Cards) and encryption (EFS, S/MIME). 

PKI is sometimes difficult to understand since it relates to different areas of knowledge – IT infrastructure, security and legal policies, hardware devices (smart cards, hardware security modules).  

This three-day instructor-led training provides in-depth training on designing, configuring and troubleshooting Active Directory Certificate Services (PKI) in Windows Server OS (current version is based on Windows Server 2012 R2). 


ITCE is a Certified Microsoft Learning Partner.  

What you’ll learn


The training is based on Microsoft Official Curriculum and further developed by the security consultants at ITCE including all the experience from real PKI projects. Students will be able to hear best practices, real project challenges and PKI solutions that work in the real life.

Module 01 – Introduction to Public Key Infrastructure

  • Describe Symmetric and Asymmetric Encryption
  • Describe PKI and its components
  • Describe Microsoft AD Certificate Cervices in Windows Server 2012

Module 02: Designing a Certification Authority Hierarchy

  • Identifying CA Hierarchy Design Requirements
  • Common CA Hierarchy Designs
  • Documenting Legal Requirements
  • Analyzing Design Requirements
  • Designing a CA Hierarchy Structure

Lab02 – Design a two-tier PKI solution

Module 03 – Implementing and Managing Certification Authorities

  • Options for implementing CA hierarchies
  • Deploy a root CA and subordinate CA
  • Configure CA properties
  • Plan and Configure CRLs
  • Planning for High Availability of PKI
  • Backup and Restore a CA

Lab03 – Deploy and configure a two-tier PKI solution

Module 04 – Deploying and Configuring Certificates

  • Describe certificates and certificate templates
  • Configure certificate template settings in Windows Server 2012
  • Modify and enable a certificate template
  • Key Archival and recovery

Lab04 – Deploy Certificate Templates

Module 05: Configuring Certificate Enrollment

  • Introduction to Certificate Enrollment
  • Enrolling Certificates Manually
  • Creating and managing custom CSRs
  • Auto-enrolling Certificates

Lab05 – Enrolling Certificates

Module 06 – Certificates Usage

  • Using Certificates for SSL
  • Using Certificates in Email Security – S/MIME
  • Using Certificates for Digital Signatures
  • Using Certificates for Content Encryption
  • Using Certificates for Authentication
  • Using Certificates for Smart Cards

Lab06 – Practical digital certificate usage

Module 07 – Integration with Hardware Cryptography Service providers

  • Using Smart Cards for Authentication
  • Using Hardware Security Modules for storing server certificates


Dimitar Georgiev ITCE

Dimitar Georgiev

Partner, Training Solutions & Principal Consultant

Dimitar is a Senior Consultant and Trainer with more than 15 years of experience in consulting some of the region’s largest enterprises in the field of Orchestration & Automation of IT Services, Cloud Solutions, IT Security. He is Training Manager at ITCE, responsible for ensuring the continuous improvement of the training experience.


Frequently Asked Questions

Who should attend?

This course is intended for Information Technology (IT) Professionals, Developers and Security Officers interested in Public Key Infrastructure

Are there any prerequisites for the training?

Basic understanding of Microsoft Windows Server and Active Directory Services.

Your Certification Journey Awaits!

Get more information on how you can get certified through online proctored exam vouchers. Boost your career prospects now!

Related Courses


    Once you submit your registration, we will get in touch with you to confirm your interest and attendance.

    By continuing to use the site, you agree to the use of cookies. more information

    The cookie settings on this website are set to "allow cookies" to give you the best browsing experience possible. If you continue to use this website without changing your cookie settings or you click "Accept" below then you are consenting to this.