Our certification authority server is configured and running, and we can successfully issue certificates to the client machines. Great! Now let's pretend we have a new project on our plates, and one of the requirements for this project is that all of the computers in your network need to have a copy of this new machine certificate that we have created. Uh oh, that sounds like a lot of work.

Even though the process for requesting one of these certificates is very quick, only a handful of seconds on each workstation, if you had to do that individually on a couple thousand machines, you are talking about a serious amount of time needing to be spent on this process. And in many cases, the certificates that you issue will only be valid for one year. Does this mean I am facing an extreme amount of administrative work every single year to re-issue these certificates as they expire?

Certainly not! Let's figure out how to utilize Group Policy in order to create a...