Before you begin
Following are the prerequisites for configuring Microsoft Enterprise CA in AppViewX
AppViewX Windows Gateway installer should be installed in a windows machine, running and reachable from AppViewX vendor plugin(s) through the Communication Modes described below.
| Communication mode | Category | Windows gateway machine | Microsoft CA |
|---|---|---|---|
| NATIVE API | User account type | Service account | Service account . |
| User permission |
Read, Request certificates, Issue and Manage certificates permission at CA level for the service account or the service account group or authenticated users Enroll permission at Certificate template level for the service account or the service account group or authenticated users |
||
| Services | RPC service |
RPC service certutil.exe command availability |
|
| Ports |
135 as the incoming port |
||
| POWERSHELL | User account type | Service account |
Service account. |
| User permission |
Full control permission to C:\Windows\Temp Read, Request certificates, Issue and Manage certificates permission at CA level for the service account or the service account group or authenticated users |
||
| Services | RPC Service, WinRM Service, WinRM Configuration, Powershell remoting,certutil.exe command availability |
RPC Service, WinRM Service, WinRM Configuration, Powershell remoting,certutil.exe command availability. |
|
| Ports |
5985 |
||
| WMI | User account type | Service account |
Service account |
| User permission |
Full control permission to C:\Windows\Temp Read, Request certificates, Issue and Manage certificates permission at CA level for the service account or the service account group or authenticated users |
||
| Services |
WMI service certutil.exe command availability |
WMI service certutil.exe command availability |
|
| Ports | NA. |
135, 445 or 139 |