Building Certificate Services Infrastructure Solutions

Description

Imagine that you have been hired as a senior IT consultant for CAP, Incorporated, a medium-sized, global IT company. This company has grown very rapidly and is experiencing challenging IT issues while trying to keep up with the latest technology trends (such as cloud, virtualization, storage, and security). The team handing the IT-related duties reports directly to you. Your job is to solve the company’s IT challenges and improve day-today business by implementing IT solutions to meet their application requirements and the demands of 5,000 users. To prepare for this assignment, do the following: Complete the required readings. Research the topic outlined below. You will need to include at least three references from authoritative articles, books, or Web sites to support your assignment. Instructions Redesign and build the client’s digital certificate security infrastructure services for this global company, using Visio as a diagramming tool. At each step in the development of your strategy (as outlined below), create a screenshot of your diagram. Write a proposal in which you: Design an overall strategy of the certificate services infrastructure that includes the following design: Multi-tier Certificate Authority (CA) hierarchy with offline root CA. Multi-forest CA deployment to incorporate the Certificate Enrollment Web Services and network device. Provide an overall plan for deploying and managing a federation identity solution, in which you do the following: Implement Relying Party Trusts with claims-based authentication. Plan and implement Claims Provider Trust rules, and show the deployment of attributes stores including Active Directory Lightweight Directory Services (AD LDS) and how it can be incorporated with Active Directory Federation Services (AD FS). Define a deployment plan for Active Directory Rights Management Services (AD RMS). Provide a plan to hand out digital certificates for your router and switches, and describe the steps necessary for issuing certificates to the users that are recognized by external clients. Describe appropriate concepts and activities presented in the virtual labs that support your server infrastructure monitoring strategy document.