AD CS Administration Cmdlets in Windows PowerShell
This topic contains the brief descriptions of the Windows PowerShell® cmdlets that are for use in administering the Active Directory Certificate Services (AD CS) certification authority (CA) role service. Each cmdlet in the table is linked to additional information about that cmdlet.
Important
The CA administration cmdlets can only be run on a computer that has the CA role service installed.
AD CS Administration Cmdlets (in verb order)
| Cmdlet | Description |
|---|---|
Configures Authority Information Access (AIA) or Online Certificate Status Protocol (OCSP) URI on a CA. |
|
Adds a certificate revocation list (CRL) distribution point uniform resource indicator (URI) where the CA publishes certification revocations. |
|
Adds a certificate template to the CA. |
|
Backs up the CA database and private key information. |
|
Checks the endorsement certificate of a TPM or checks whether the endorsement key exists on the local CA. |
|
Gets the Authority Information Access (AIA) and Online Certificate Status Protocol (OCSP) URI information set on the AIA extension of the CA properties. |
|
Gets all the locations set on the CRL distribution point (CDP) extension of the CA properties. |
|
Gets the list of templates set on the CA for issuance of certificates. |
|
Removes authority information access (AIA) or Online Certificate Status Protocol (OCSP) URI from the AIA extension set on the CA. |
|
Removes the URI for the certificate revocation list (CRL) distribution point (CDP) from the CA. |
|
Removes the templates from the CA which were set for issuance of certificates. |
|
Restores the CA database and private key information. |
Conseil
You can import the cmdlets manually by running the following commands from Windows PowerShell:
- Import-Module ServerManager
- Add-WindowsFeature Adcs-Cert-Authority
- Get-Command -Module AdcsAdministration
See Also
Other Resources
CA