What’s new with PKI in Windows 7 and 2008 R2

John Morello (who is a Senior Program Manager, and is designing security solutions for access anywhere, PKI and etc….) has published an article in the TechNet Magazine, describing the new features and improvements to the PKI Infrastructure that will be introduced in Windows 7 and Windows Server 2008 R2.
The features are very cool and include:
* Cross Forest Auto Enrollment – you will now be able to Auto Enroll Certificates in Cross Forest scenarios. Organizations that have Many Forests will now be able to consolidate CA’s from all forest’s to one single forest CA. Or let’s say that you have only one forest, but you are required to issue Certificates for people that outside your organization.
* CA on Server Core – you will be able to install your CA on Server Core, and manage it with known commands like certutill and etc…
* Best Practice Analyzer – One of the things I’m most expecting. Like ExBPA, you will be able to run test’s on your environment’s to check for flaws or misconfigurations.
The list of improvements is actually very long, and you can find the list itself, and much more information on John’s Article here.

What do you think about this post?