AD Certificate Services: A Massive Chunk of Windows Security Functionality Finally Gets the Security Research It Deserves

2/24/2026 12:00:00 PM [(UTC-05:00) Eastern Time (US & Canada)] - Can't make the live event? Register anyway to receive a link to the recording.

Show/Hide All Time Zones

All Time Zones


Dateline Standard Time-(UTC-12:00) International Date Line West	2/24/2026 5:00:00 AM
UTC-11-(UTC-11:00) Coordinated Universal Time-11	2/24/2026 6:00:00 AM
Aleutian Standard Time-(UTC-10:00) Aleutian Islands	2/24/2026 7:00:00 AM
Hawaiian Standard Time-(UTC-10:00) Hawaii	2/24/2026 7:00:00 AM
Marquesas Standard Time-(UTC-09:30) Marquesas Islands	2/24/2026 7:30:00 AM
Alaskan Standard Time-(UTC-09:00) Alaska	2/24/2026 8:00:00 AM
UTC-09-(UTC-09:00) Coordinated Universal Time-09	2/24/2026 8:00:00 AM
Pacific Standard Time (Mexico)-(UTC-08:00) Baja California	2/24/2026 9:00:00 AM
UTC-08-(UTC-08:00) Coordinated Universal Time-08	2/24/2026 9:00:00 AM
Pacific Standard Time-(UTC-08:00) Pacific Time (US & Canada)	2/24/2026 9:00:00 AM
US Mountain Standard Time-(UTC-07:00) Arizona	2/24/2026 10:00:00 AM
Mountain Standard Time (Mexico)-(UTC-07:00) La Paz, Mazatlan	2/24/2026 10:00:00 AM
Mountain Standard Time-(UTC-07:00) Mountain Time (US & Canada)	2/24/2026 10:00:00 AM
Yukon Standard Time-(UTC-07:00) Yukon	2/24/2026 10:00:00 AM
Central America Standard Time-(UTC-06:00) Central America	2/24/2026 11:00:00 AM
Central Standard Time-(UTC-06:00) Central Time (US & Canada)	2/24/2026 11:00:00 AM
Easter Island Standard Time-(UTC-06:00) Easter Island	2/24/2026 12:00:00 PM
Central Standard Time (Mexico)-(UTC-06:00) Guadalajara, Mexico City, Monterrey	2/24/2026 11:00:00 AM
Canada Central Standard Time-(UTC-06:00) Saskatchewan	2/24/2026 11:00:00 AM
SA Pacific Standard Time-(UTC-05:00) Bogota, Lima, Quito, Rio Branco	2/24/2026 12:00:00 PM
Eastern Standard Time (Mexico)-(UTC-05:00) Chetumal	2/24/2026 12:00:00 PM
Eastern Standard Time-(UTC-05:00) Eastern Time (US & Canada)	2/24/2026 12:00:00 PM
Haiti Standard Time-(UTC-05:00) Haiti	2/24/2026 12:00:00 PM
Cuba Standard Time-(UTC-05:00) Havana	2/24/2026 12:00:00 PM
US Eastern Standard Time-(UTC-05:00) Indiana (East)	2/24/2026 12:00:00 PM
Turks And Caicos Standard Time-(UTC-05:00) Turks and Caicos	2/24/2026 12:00:00 PM
Paraguay Standard Time-(UTC-04:00) Asuncion	2/24/2026 2:00:00 PM
Atlantic Standard Time-(UTC-04:00) Atlantic Time (Canada)	2/24/2026 1:00:00 PM
Venezuela Standard Time-(UTC-04:00) Caracas	2/24/2026 1:00:00 PM
Central Brazilian Standard Time-(UTC-04:00) Cuiaba	2/24/2026 1:00:00 PM
SA Western Standard Time-(UTC-04:00) Georgetown, La Paz, Manaus, San Juan	2/24/2026 1:00:00 PM
Pacific SA Standard Time-(UTC-04:00) Santiago	2/24/2026 2:00:00 PM
Newfoundland Standard Time-(UTC-03:30) Newfoundland	2/24/2026 1:30:00 PM
Tocantins Standard Time-(UTC-03:00) Araguaina	2/24/2026 2:00:00 PM
E. South America Standard Time-(UTC-03:00) Brasilia	2/24/2026 2:00:00 PM
SA Eastern Standard Time-(UTC-03:00) Cayenne, Fortaleza	2/24/2026 2:00:00 PM
Argentina Standard Time-(UTC-03:00) City of Buenos Aires	2/24/2026 2:00:00 PM
Montevideo Standard Time-(UTC-03:00) Montevideo	2/24/2026 2:00:00 PM
Magallanes Standard Time-(UTC-03:00) Punta Arenas	2/24/2026 2:00:00 PM
Saint Pierre Standard Time-(UTC-03:00) Saint Pierre and Miquelon	2/24/2026 2:00:00 PM
Bahia Standard Time-(UTC-03:00) Salvador	2/24/2026 2:00:00 PM
UTC-02-(UTC-02:00) Coordinated Universal Time-02	2/24/2026 3:00:00 PM
Greenland Standard Time-(UTC-02:00) Greenland	2/24/2026 3:00:00 PM
Mid-Atlantic Standard Time-(UTC-02:00) Mid-Atlantic - Old	2/24/2026 3:00:00 PM
Azores Standard Time-(UTC-01:00) Azores	2/24/2026 4:00:00 PM
Cape Verde Standard Time-(UTC-01:00) Cabo Verde Is.	2/24/2026 4:00:00 PM
UTC-(UTC) Coordinated Universal Time	2/24/2026 5:00:00 PM
GMT Standard Time-(UTC+00:00) Dublin, Edinburgh, Lisbon, London	2/24/2026 5:00:00 PM
Greenwich Standard Time-(UTC+00:00) Monrovia, Reykjavik	2/24/2026 5:00:00 PM
Sao Tome Standard Time-(UTC+00:00) Sao Tome	2/24/2026 5:00:00 PM
Morocco Standard Time-(UTC+01:00) Casablanca	2/24/2026 5:00:00 PM
W. Europe Standard Time-(UTC+01:00) Amsterdam, Berlin, Bern, Rome, Stockholm, Vienna	2/24/2026 6:00:00 PM
Central Europe Standard Time-(UTC+01:00) Belgrade, Bratislava, Budapest, Ljubljana, Prague	2/24/2026 6:00:00 PM
Romance Standard Time-(UTC+01:00) Brussels, Copenhagen, Madrid, Paris	2/24/2026 6:00:00 PM
Central European Standard Time-(UTC+01:00) Sarajevo, Skopje, Warsaw, Zagreb	2/24/2026 6:00:00 PM
W. Central Africa Standard Time-(UTC+01:00) West Central Africa	2/24/2026 6:00:00 PM
GTB Standard Time-(UTC+02:00) Athens, Bucharest	2/24/2026 7:00:00 PM
Middle East Standard Time-(UTC+02:00) Beirut	2/24/2026 7:00:00 PM
Egypt Standard Time-(UTC+02:00) Cairo	2/24/2026 7:00:00 PM
E. Europe Standard Time-(UTC+02:00) Chisinau	2/24/2026 7:00:00 PM
West Bank Standard Time-(UTC+02:00) Gaza, Hebron	2/24/2026 7:00:00 PM
South Africa Standard Time-(UTC+02:00) Harare, Pretoria	2/24/2026 7:00:00 PM
FLE Standard Time-(UTC+02:00) Helsinki, Kyiv, Riga, Sofia, Tallinn, Vilnius	2/24/2026 7:00:00 PM
Israel Standard Time-(UTC+02:00) Jerusalem	2/24/2026 7:00:00 PM
South Sudan Standard Time-(UTC+02:00) Juba	2/24/2026 7:00:00 PM
Kaliningrad Standard Time-(UTC+02:00) Kaliningrad	2/24/2026 7:00:00 PM
Sudan Standard Time-(UTC+02:00) Khartoum	2/24/2026 7:00:00 PM
Libya Standard Time-(UTC+02:00) Tripoli	2/24/2026 7:00:00 PM
Namibia Standard Time-(UTC+02:00) Windhoek	2/24/2026 7:00:00 PM
Jordan Standard Time-(UTC+03:00) Amman	2/24/2026 8:00:00 PM
Arabic Standard Time-(UTC+03:00) Baghdad	2/24/2026 8:00:00 PM
Syria Standard Time-(UTC+03:00) Damascus	2/24/2026 8:00:00 PM
Turkey Standard Time-(UTC+03:00) Istanbul	2/24/2026 8:00:00 PM
Arab Standard Time-(UTC+03:00) Kuwait, Riyadh	2/24/2026 8:00:00 PM
Belarus Standard Time-(UTC+03:00) Minsk	2/24/2026 8:00:00 PM
Russian Standard Time-(UTC+03:00) Moscow, St. Petersburg	2/24/2026 8:00:00 PM
E. Africa Standard Time-(UTC+03:00) Nairobi	2/24/2026 8:00:00 PM
Volgograd Standard Time-(UTC+03:00) Volgograd	2/24/2026 8:00:00 PM
Iran Standard Time-(UTC+03:30) Tehran	2/24/2026 8:30:00 PM
Arabian Standard Time-(UTC+04:00) Abu Dhabi, Muscat	2/24/2026 9:00:00 PM
Astrakhan Standard Time-(UTC+04:00) Astrakhan, Ulyanovsk	2/24/2026 9:00:00 PM
Azerbaijan Standard Time-(UTC+04:00) Baku	2/24/2026 9:00:00 PM
Russia Time Zone 3-(UTC+04:00) Izhevsk, Samara	2/24/2026 9:00:00 PM
Mauritius Standard Time-(UTC+04:00) Port Louis	2/24/2026 9:00:00 PM
Saratov Standard Time-(UTC+04:00) Saratov	2/24/2026 9:00:00 PM
Georgian Standard Time-(UTC+04:00) Tbilisi	2/24/2026 9:00:00 PM
Caucasus Standard Time-(UTC+04:00) Yerevan	2/24/2026 9:00:00 PM
Afghanistan Standard Time-(UTC+04:30) Kabul	2/24/2026 9:30:00 PM
West Asia Standard Time-(UTC+05:00) Ashgabat, Tashkent	2/24/2026 10:00:00 PM
Qyzylorda Standard Time-(UTC+05:00) Astana	2/24/2026 10:00:00 PM
Ekaterinburg Standard Time-(UTC+05:00) Ekaterinburg	2/24/2026 10:00:00 PM
Pakistan Standard Time-(UTC+05:00) Islamabad, Karachi	2/24/2026 10:00:00 PM
India Standard Time-(UTC+05:30) Chennai, Kolkata, Mumbai, New Delhi	2/24/2026 10:30:00 PM
Sri Lanka Standard Time-(UTC+05:30) Sri Jayawardenepura	2/24/2026 10:30:00 PM
Nepal Standard Time-(UTC+05:45) Kathmandu	2/24/2026 10:45:00 PM
Central Asia Standard Time-(UTC+06:00) Bishkek	2/24/2026 11:00:00 PM
Bangladesh Standard Time-(UTC+06:00) Dhaka	2/24/2026 11:00:00 PM
Omsk Standard Time-(UTC+06:00) Omsk	2/24/2026 11:00:00 PM
Myanmar Standard Time-(UTC+06:30) Yangon (Rangoon)	2/24/2026 11:30:00 PM
SE Asia Standard Time-(UTC+07:00) Bangkok, Hanoi, Jakarta	2/25/2026 12:00:00 AM
Altai Standard Time-(UTC+07:00) Barnaul, Gorno-Altaysk	2/25/2026 12:00:00 AM
W. Mongolia Standard Time-(UTC+07:00) Hovd	2/25/2026 12:00:00 AM
North Asia Standard Time-(UTC+07:00) Krasnoyarsk	2/25/2026 12:00:00 AM
N. Central Asia Standard Time-(UTC+07:00) Novosibirsk	2/25/2026 12:00:00 AM
Tomsk Standard Time-(UTC+07:00) Tomsk	2/25/2026 12:00:00 AM
China Standard Time-(UTC+08:00) Beijing, Chongqing, Hong Kong, Urumqi	2/25/2026 1:00:00 AM
North Asia East Standard Time-(UTC+08:00) Irkutsk	2/25/2026 1:00:00 AM
Singapore Standard Time-(UTC+08:00) Kuala Lumpur, Singapore	2/25/2026 1:00:00 AM
W. Australia Standard Time-(UTC+08:00) Perth	2/25/2026 1:00:00 AM
Taipei Standard Time-(UTC+08:00) Taipei	2/25/2026 1:00:00 AM
Ulaanbaatar Standard Time-(UTC+08:00) Ulaanbaatar	2/25/2026 1:00:00 AM
Aus Central W. Standard Time-(UTC+08:45) Eucla	2/25/2026 1:45:00 AM
Transbaikal Standard Time-(UTC+09:00) Chita	2/25/2026 2:00:00 AM
Tokyo Standard Time-(UTC+09:00) Osaka, Sapporo, Tokyo	2/25/2026 2:00:00 AM
North Korea Standard Time-(UTC+09:00) Pyongyang	2/25/2026 2:00:00 AM
Korea Standard Time-(UTC+09:00) Seoul	2/25/2026 2:00:00 AM
Yakutsk Standard Time-(UTC+09:00) Yakutsk	2/25/2026 2:00:00 AM
Cen. Australia Standard Time-(UTC+09:30) Adelaide	2/25/2026 3:30:00 AM
AUS Central Standard Time-(UTC+09:30) Darwin	2/25/2026 2:30:00 AM
E. Australia Standard Time-(UTC+10:00) Brisbane	2/25/2026 3:00:00 AM
AUS Eastern Standard Time-(UTC+10:00) Canberra, Melbourne, Sydney	2/25/2026 4:00:00 AM
West Pacific Standard Time-(UTC+10:00) Guam, Port Moresby	2/25/2026 3:00:00 AM
Tasmania Standard Time-(UTC+10:00) Hobart	2/25/2026 4:00:00 AM
Vladivostok Standard Time-(UTC+10:00) Vladivostok	2/25/2026 3:00:00 AM
Lord Howe Standard Time-(UTC+10:30) Lord Howe Island	2/25/2026 4:00:00 AM
Bougainville Standard Time-(UTC+11:00) Bougainville Island	2/25/2026 4:00:00 AM
Russia Time Zone 10-(UTC+11:00) Chokurdakh	2/25/2026 4:00:00 AM
Magadan Standard Time-(UTC+11:00) Magadan	2/25/2026 4:00:00 AM
Norfolk Standard Time-(UTC+11:00) Norfolk Island	2/25/2026 5:00:00 AM
Sakhalin Standard Time-(UTC+11:00) Sakhalin	2/25/2026 4:00:00 AM
Central Pacific Standard Time-(UTC+11:00) Solomon Is., New Caledonia	2/25/2026 4:00:00 AM
Russia Time Zone 11-(UTC+12:00) Anadyr, Petropavlovsk-Kamchatsky	2/25/2026 5:00:00 AM
New Zealand Standard Time-(UTC+12:00) Auckland, Wellington	2/25/2026 6:00:00 AM
UTC+12-(UTC+12:00) Coordinated Universal Time+12	2/25/2026 5:00:00 AM
Fiji Standard Time-(UTC+12:00) Fiji	2/25/2026 5:00:00 AM
Kamchatka Standard Time-(UTC+12:00) Petropavlovsk-Kamchatsky - Old	2/25/2026 5:00:00 AM
Chatham Islands Standard Time-(UTC+12:45) Chatham Islands	2/25/2026 6:45:00 AM
UTC+13-(UTC+13:00) Coordinated Universal Time+13	2/25/2026 6:00:00 AM
Tonga Standard Time-(UTC+13:00) Nuku'alofa	2/25/2026 6:00:00 AM
Samoa Standard Time-(UTC+13:00) Samoa	2/25/2026 6:00:00 AM
Line Islands Standard Time-(UTC+14:00) Kiritimati Island	2/25/2026 7:00:00 AM

Webinar Registration

For decades the security community – myself included – have largely neglected the Public Key Infrastructure (PKI) that is built into the Windows/Active Directory environment, namely Active Directory Certificate Services (AD CS).

Certificates and PKI are natural outgrowth from amazing, world changing work on asymmetric cryptography done by Diffie, Hellman, Merkle and Rivest, Shamir, and Adleman (RSA) when I was wrestling with long division in the South Carolina public school system. (That is a fascinating story told by Wired’s Steven Levy in his book Crypto). In this webinar, I will quickly explain how asymmetric cryptography uses 2 keys – one of which is arbitrarily designated the public key and the other private and

Why Anne can freely share her public key with anyone
How Anne’s public key allows Bob to send Anne a message only she can decrypt
How the public key allows Bob to verify messages Anne sends really came from her

But that’s just the beginning because how does Bob know a public key really is Anne’s and not an imposter? I’ll show you how that is where certificates come in and how certificates have to be issued by a certificate authority that everyone trusts and how at the end of the day it all goes back to the supremo (i.e. root) CA’s public/private key pair. And how all anyone really needs at the beginning is the top CA’s public key and how it all comes crashing down if the CA’s private key is stolen.

We all participate every day in the Internet’s PKI when we browse websites protected by a web server certificate. Laptop and phone OS’s automatically trust the major commercial CAs and have their root CA’s public key hardcoded. That’s what I call the public PKI of the Internet. AD Certificate Services is an internal version of that for using certificates inside an organization which I call a private PKI. But AD CS is more than a certificate authority – it’s a full-fledged automated PKI that integrates deeply with Active Directory and the Windows base operating system to automate the complicated and otherwise laborious process of certificate enrollment which requires authentication, authorization, key generation, etc.

Unlike the “modern” MS cloud environment that is in a perpetual state of “pardon our dust” remodeling, and like Active Directory itself, AD Certificate Services was actually designed and it makes the onerous burden of running a PKI amazingly simple. But as with all security technologies, there are vulnerabilities. Oddly, as widely deployed as AD Certificate Services is, it hasn’t gotten much attention from security researchers over all this time. But in the last few years that has changed.

In this real training for free event, I will introduce you to the foundational elements of PKI and then show you how AD CS leverages existing computer and user accounts in AD, Kerberos and group policy to automate certificate enrollment.

My guest is security researcher Darryl Baker from Netwrix who specializes in identity security, adversary emulation, and detection strategy across Active Directory, Entra ID, and hybrid identity ecosystems. After my intro to PKI and AD CS, Darryl will take over and show you 3 vulnerabilities in AD CS involving certificate templates.

Certificate templates are one of the key objects in AD CS. They are basically profiles defining common properties associated with different types of certificates needed in an environment. For instance, if you wish to use Windows Event Forwarding over the Internet to collect security logs from roving laptops you need each laptop to request a client certificate so that it can authenticate to the Windows Event Collector using https certificate authentication since AD Kerberos isn’t available in that scenario.

Darryl will focus on 3 vulnerabilities involving certificate templates:

Domain escalation via No Issuance Requirements + Enrollable Client Authentication/Smart Card Logon OID templates + CT_FLAG_ENROLLEE_SUPPLIES_SUBJECT
Domain escalation via No Issuance Requirements + Enrollable Any Purpose EKU or no EKU
Domain escalation via No Issuance Requirements + Certificate Request Agent EKU + no enrollment agent restrictions

Please join us for this in-depth real training for free event.

First Name:	Required
Last Name:	Required
Work Email:	Required Invalid email address
Phone:	Required
Organization:	Required
Country:	Required
City:	Required
State:	Required
Zip/Postal Code:	Required
Company Size:	RequiredRequired
Job Title:	RequiredRequired
Industry:	RequiredRequired
	Your information will be shared with the sponsor. By clicking "Submit", you're agreeing to our Privacy Policy and consenting to be contacted by us and the sponsor. Tweet

Upcoming Webinars

Additional Resources

User name:
Password:
	/ Forgot?
	Register

January 2026 Patch Tuesday	"Patch Tuesday - Starting 2026 with a Bang; 3 Zero Days " - sponsored by LOGbinder and Supercharger

Follow @randyfsmith

About | Newsletter | Contact

Ultimate IT Security is a division of Monterey Technology Group, Inc. ©2006-2026 Monterey Technology Group, Inc. All rights reserved.
Disclaimer: We do our best to provide quality information and expert commentary but use all information at your own risk. For complaints, please contact abuse@ultimatewindowssecurity.com.