Resources for PKI
Hi everyone,
I’m currently working in IAM and have realized that my understanding of SSL/TLS certificates and PKI is one of my weakest areas. While I understand the basic concepts of SSL/TLS, certificate-based authentication, and how certificates are used in applications, I want to build a much deeper and hands-on understanding of PKI from the ground up.
My primary focus is on Active Directory Certificate Services (AD CS). I’d like to learn everything properly, including:
Root CA and Intermediate CA hierarchy
Certificate chains and trust
CRLs and OCSP
Certificate templates
Enrollment and auto-enrollment
Certificate-based authentication
Smart cards and device certificates
PKI design and best practices
Common troubleshooting scenarios
AD CS attacks and security considerations
I’m looking for structured learning resources, labs, courses, home lab setups, websites, or platforms that provide practical hands-on experience rather than just theory.
For those who became comfortable with PKI and AD CS, what resources helped you the most? If you were starting from scratch today, how would you learn it?
Thanks in advance!