Tips For Using Microsoft PKI To Generate A Certificate

There are several different options in PKI, Public Key Infrastructure certificates that can be used through Microsoft servers. It is also possible for email encryption to use a variety of Microsoft options for Personal Authentication certificates as well as the Secure Email Certificates offered by Comodo.

When choosing to use Microsoft PKI to generate a certificate for use for any type of secure transfer of information, there are several things to keep in mind. The most important is to have a very clear understanding of what you want the certificate to do.

All SSL/TLS products offered by Comodo provide secure transmission of data. With the SSL/TLS (Secure Sockets Layer/Transport Layer Security) certificates, it is easy to protect a main domain and subdomains or even multiple domains to the level required and possible for the given type of products. It is also possible to use Public Key Infrastructure for secure transmission of email and to digitally sign documents to allow you to send information confidentially and without any concerns about possible tampering with the information while in transit.

To know what you need before you use Microsoft PKI to generate a certificate, consider your options. At Comodo, we provide a step-by-step guide for each possible Certificate Signing Request or request option for email or personal authentication certs. These instructions can be found at our Comodo knowledgebase and are accessible to everyone.

Types of Certificates by Requirement

SSL/TLS products in Microsoft servers will all start using the IIS Manager. This makes it very easy as you simply go through the steps to generate the Certificate Signing Request and then submit the request to Comodo.

You will need to verify you are using the where the certificate and private key will be installed when you use the system for Microsoft PKI to generate a certificate. After installation, you can also export the certificate to other servers on the system without any additional costs.

Additionally, the full control of the certificates issued can be managed through the IIS as well. We also offer our EPKI Manager or Enterprise Public Key Infrastructure Manager that is a web based console, allowing quick and easy reporting, review and issuance of PKI certificates as needed.

Email certificates or client certificates will also need to use the Microsoft PKI to generate a certificate. This will include the user being provided with a link that allows them to input the information needed for the system to automatically generate the certificate and the private key.

At the same time with the use of the EPKI Manager, the certificate and private key will automatically be installed on the device and for the email set up in the system and provided by the user. For the IT department, this saves a lot of time and also allows the certificate to be loaded to a smart card or a USB to be exported to other devices for mobility and practicality for the user.

The EPKI Manager allows the administrator to be able to generate the necessary email and personal authentication certificates needed not just for employees but also to clients. This is an important aspect in choosing a Certificate Authority as you want to be able to provide very quick access and not end up waiting for the Certificate Authority to process the request. Also important to note, it is possible to revoke certificates and keys through the system, immediately limiting any possible issues of breaches or terminating the ability for a certificate and key to be used if an employee is let go or if there are concerns about the use of the certificate.

Once you have the EPKI Manager configured Comodo is able to fully support the certificates generated through the system. The administrator will also be able to generate sub-users for the EPKI Manager with access to specific features and functions. This not only increases productivity and efficiency, but it also maintains security through controlling access to sensitive areas of the control functions.

By signing up to use the EPKI Manager the business also benefits from low prices on all SSL/TLS products. These low prices can be locked in by making a small deposit when opening the account, or you can choose the Pay-As-You-Go option to make budgeting easy.

To speak to a security expert at Comodo about your needs for SSL/TLS products, including digital signatures and personal authentication certificates, see us online at You can reach us through the live chat or call us in person at +1 888 266 6361.

Related Articles
Back to TOP