1
00:00:07,750 --> 00:00:10,460
You can use the C policy.

2
00:00:10,480 --> 00:00:17,040
Dot I in file if you want to deploy a router or subordinate C and to you.

3
00:00:17,200 --> 00:00:23,700
You want to define some wellies and parameters during or after installation.

4
00:00:24,130 --> 00:00:32,680
Let's see policy dot on a file is a plain text file that contains various settings that you can use

5
00:00:33,010 --> 00:00:39,500
when you install the ADT s role or when you review this is certificate.

6
00:00:39,690 --> 00:00:48,220
There CIA policy dot and a file is not required to install a DCF but without ID.

7
00:00:48,390 --> 00:00:57,640
Default settings are applied in many cases the default settings are insufficient for more complex deployments

8
00:00:58,450 --> 00:01:07,450
you can use there see a policy that I never failed to configure C is in more complex deployments each

9
00:01:07,450 --> 00:01:18,100
see a policy file is divided into sections and has a simple structure and lets review this structure

10
00:01:18,530 --> 00:01:27,940
there first is section a section is an area in this dot and a file that contains a logical group of

11
00:01:27,940 --> 00:01:38,630
keys a section all this appears in brackets in the daughter and f file and part is a key a key is a

12
00:01:38,960 --> 00:01:49,130
parameter parameter that is to the left of the equals sign and a well you part and well here is the

13
00:01:49,130 --> 00:01:53,480
parameter of letters to the right of the equals sign.

14
00:01:53,480 --> 00:02:03,230
For example if you want to specify in a i a point in the C ball is a dot and a file you will use follow

15
00:02:03,230 --> 00:02:16,380
in syntax and this example authority information access is a section your rail is the key and the address

16
00:02:16,500 --> 00:02:26,040
is the well you you can also specify some C server resurgence in a c a policy dot and never file one

17
00:02:26,040 --> 00:02:36,030
example of the section that specifies the sentence you can see on the screen please know that all parameters

18
00:02:36,030 --> 00:02:44,570
from the previous examples are optional you can also use the C policy dot on a file when installing

19
00:02:44,650 --> 00:02:54,300
a DC s to defined the following You can define certification practice statement this describes the practices

20
00:02:54,360 --> 00:03:04,320
that the CIA uses to issue certificates this includes the types of certificates issued information about

21
00:03:04,420 --> 00:03:15,410
issuing renewing and recovering certificates and other details about the CS configuration you could

22
00:03:15,410 --> 00:03:18,640
also specify object identifier.

23
00:03:18,710 --> 00:03:23,630
This and identifies a specific object to red tribute.

24
00:03:23,790 --> 00:03:29,000
You could also specify CRL publication into walls.

25
00:03:29,040 --> 00:03:38,940
This defines the interval between publications for the base CRL and you can specify seat renewal settings

26
00:03:39,480 --> 00:03:42,930
you can define renewal sentence as follows.

27
00:03:42,930 --> 00:03:55,820
Case size certification validity period and C P and a path after creating your CIA policy DOD.

28
00:03:55,970 --> 00:03:57,060
I never fail.

29
00:03:57,080 --> 00:04:06,080
You must copy it to the system root folder of your server for example C drive backslash windows before

30
00:04:06,080 --> 00:04:12,330
you install the ADC as role or before you renew their C certificate.

31
00:04:12,380 --> 00:04:21,230
Please note that the CIA policy at DOD I never file is processed for both a route and subordinate C

32
00:04:21,320 --> 00:04:24,170
installations and renewals.