Centrify uses the Microsoft Windows certificate auto-enrollment feature to make certificates available to UNIX and Mac computers. If auto-enrollment is enabled, when a UNIX or Mac computer joins a domain, certificates are requested from the Certification Authority based on particular templates, and the certificates are installed on the joined computer.
To enable auto-enrollment:
- Enable auto-enrollment for the group policy.
- Create a certificate template with auto-enrollment enabled.
For details about enabling auto-enrollment, including how to perform these procedures, see “Configuring a Certificate Authority for auto-enrollment,” in the Isolation and Encryption Service Administrator’s Guide.