Configuring auto-enrollment

Centrify uses the Microsoft Windows certificate auto-enrollment feature to make certificates available to UNIX and Mac computers. If auto-enrollment is enabled, when a UNIX or Mac computer joins a domain, certificates are requested from the Certification Authority based on particular templates, and the certificates are installed on the joined computer.

To enable auto-enrollment:

  • Enable auto-enrollment for the group policy.
  • Create a certificate template with auto-enrollment enabled.

For details about enabling auto-enrollment, including how to perform these procedures, see “Configuring a Certificate Authority for auto-enrollment,” in the Isolation and Encryption Service Administrator’s Guide.