Skip to content

Microsoft AD CS integration with Venafi as a Service

Many organizations use Microsoft Active Directory Services (AD CS) to issue internally-trusted certificates. Connecting Microsoft AD CS to Venafi as a Service provides comprehensive visibility and automation. Venafi as a Service can provide visibility to the certificates issued by Microsoft AD CS, and it can also automate certificate issuance through Microsoft AD CS.

How it works

Microsoft AD CS connects to Venafi as a Service using a VSatellite and a VSatellite Worker.

The VSatellite is installed on a Linux server, and it creates the connection point between your organization's internal network and Venafi as a Service.

The VSatellite Worker is the connection point between the VSatellite to your Microsoft AD CS server.

VSatellite Worker diagram

What's Next

The information in this section provides you with the information you need to set up AD CS integration with Venafi as a Service.

Before you start, you're going to need a couple servers for your VSatellite and VSatellite Worker. If you don't have those yet, have a look at the system requirements.

Also, your AD CS service is going to need to meet certain configuration requirements.

Once the servers are in place and your AD CS is properly configured, we'll walk you through the rest of the setup.


Last update: November 20, 2021