Setting Up Protection for Computers Using Certificates
Updated: January 15, 2013
Applies To: System Center 2012 - Data Protection Manager, System Center 2012 SP1 - Data Protection Manager
Setting up DPM server to protect computers using certificates
Repeat these steps on every DPM server that will protect a computer in a workgroup or in an untrusted domain.
Generate a certificate from the certification authority for the DPM server.
Import the certificate to the personal certificate store of Local Computer account and then run Using Set-DPMCredentials to configure the DPM server.
This generates a metadata file that is required at the time of each agent install in untrusted domain.
Tip If this file is lost or deleted, you can recreate it by running
Set-DPMCredentials -action regenerate.
The DPM server is now successfully configured for use with certificates.
Setting up a computer for protection by DPM
Repeat these steps on every computer you want to protect that is in a workgroup or in an untrusted domain.
Install the DPM protection agent on a computer and then attach it to the DPM server. For more information, see Installing and Configuring Protection Agents.
Generate a certificate from the certification authority for the computer you want to protect.
Import the certificate to the personal certificate store of Local Computer.
Run Using SetDPMServer to complete the setup.
The program saves a file locally with the certificate metadata. Later, this file is used to attach this agent to the DPM server.
Tip If this file is lost or deleted, you can recreate it by running SetDPMServer.exe.
Copy the generated Cert.xml file to the DPM server.
Attaching an untrusted computer to DPM
Run Using Attach-ProductionServerWithCertificate to attach an untrusted computer to the DPM server.
Repeat the step for every untrusted computer.
For additional resources, see Information and Support for System Center 2012.
Tip: Use this query to find online documentation in the TechNet Library for System Center 2012. For instructions and examples, see Search the System Center 2012 Documentation Library.