I have a web server in the DMZ that is currently using it's own local CA to issue a cert for a web site also hosted locally. I have been requested to issue a certificate from our internal AD Certificate Services domain setup and use this.
I don't see the point in changing, there is a drive to manage everything centrally, but have no choice.
I can't find anything that details how I can configure this to work. I would have thought add the web server IP to the firewall rules on the appropriate port and that would be enough but maybe not?
Any help appreciated.