Public Key Infrastructure | with Greg Lojek

Public Key Infrastructure

The course provides the knowledge and skills necessary to select, design and deploy PKI, to secure existing and future applications within your organization. It also gives a deeper look into the foundations of cryptography and the working principles of the algorithms being used.
Throughout the whole course, participants will gain in-depth knowledge on the following topics:
• Elements of a PKI
• PKI management
• Trust in a digital world
• Digital signature implementation
• Trust models

Anyone involved in Public Key Infrastructure | PKI decision-making, implementing and securing e-commerce and other Internet applications, including CIOs, Chief Security Officers, MIS Directors, Security Managers and Internal Auditors.

Scheduled Courses

No dates are currently available.
To request new dates, arrange a meeting to identify your goals, or find out more details about the training Message Greg directly

This course can be tailored and delivered privately to your team
Request a Quote (please specify preferred dates and expected number of delegates).

Course Contents

• Information security
• Cryptography basics
• Types of certificates
• Certificate Processes and Interactions
• Certification Authorities
• Policies and PKI
• PKI Architecture
• Offline Root Certification Authority
• Hardware Security Module
• Deploying Two-Tier PKI Hierarchy
• Certificate Templates and Enrollment Methods
• Certificate Revocation
• Centralized Certificate Store
• Legal aspects of a PKI


• Preparing virtual lab environment
• Creating and configuring domain environment
• Managing secure credentials
• Installing and configuring HSM simulator
• Installing and configuring RootCA, SubCA
• Configuring different enrolment methods
• Issuing different types of certificate users and computers
• Enabling autoenrollment for domain users and computers
• Securing websites using SSL
• Encrypting files and folders using EFS certificate template
• Signing documents
• Signing PowerShell scripts using Code Sign template
• Configuring Recovery agent
• Configuring Key Recovery Agent
• Configuring Enrolment Agent
• Installing and configuring Smartcard based access
• Configuring VPN connection
• Configuring IPSec
• Securing connection to domain and non-domain joined computers using SSL
• Revoking Certificates
• Configuring OCSP
• Configuring credential roaming
• Deploying Virtual Smartcards
• Backup and restore CA
• Renewing RootCA and SubCA certificates
• Configuring Centralized Certificate Store
• Bulk deployment of SSL-based websites

Student Prerequisites

• Experience with AD DS concepts in Windows Server
• Experience working with and configuring Windows Server
• An awareness of basic security best practices

Technical requirements

The whole course is delivered as a live virtual class training.

All delegates will receive an invitation to the conference and information on how to connect to specially prepared virtual machines using remote desktops.

Delegates can connect from anywhere as long as they have a reliable connection to the Internet.

My recommendation is that delegates should have 2 monitors or one monitor with at least Full HD resolution because they will have to watch the trainer’s demonstration and be able to work with virtual desktop at the same time. There is no special requirement as far as delegates’ computer configuration is concerned because remote desktop does not require a lot of resources.

Windows 10/11 capable desktop computer or notebook is highly recommended.

As a conferencing system, MS Teams, Zoom or Webex would be preferred, depending which one works better, taking into account the location of delegates.

It is recommended that delegates use headsets to connect to audio conferencing. Video connection is not required.

All delegates will receive all PowerPoint slides and all the other files and scripts, used or created by the trainer during the training.

Delivery: Online (live)
Level: Intermediate
Day & Time:
Week Days
What is included:
Digital courseware
Digital Recording
Printed courseware
Extra revision sessions
Venue: Virtual Live Meeting
Training Instructor accredited by: Microsoft (MCT)
Duration (days): 3 days

Public discussion (0)

You must log in to send a new comment.