Here I’m going to share the steps to configure a Certificate Authority in your environment with a windows based server. Most of the companies use Active Directory Certificate Services (AD CS) as their root Certificate Authority.
This root CA can be stand-alone or Enterprise CA, in my case I don’t have another CA and I’m installing this as an Enterprise CA on Windows Server 2008 R2.
Jump in to your server and open the Server Manager and add a new role by clicking the “Add Roles” option and click “Next” on the second step