This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(182.40000000000003, 32%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EM%3C/text%3E%3C/svg%3E)
Hello,
I need to setup bitlocker for new customer and I can see in the documentation I don't need MP to be https since 2002 but I'm not sure to understand correctly what is needed.
I just need to bind authenticate server templace certificate on my "default web site" on my MP server ?
Or do I need to do some more additionnal step like described here :
https://msendpointmgr.com/2020/04/02/goodbye-mbam-bitlocker-management-in-configuration-manager-part-1/
On the documentation, I understand I just need to bind certificate but I prefer to be sure :)
Thank you
I just need to bind authenticate server templace certificate on my "default web site" on my MP server ?
Not a template, but an actual certificate. The linked walkthrough by Maurice is accurate for doing this but assumes a few things about the source of the cert.
Thank you for your answer.
Yes, of course it's certificate from template and not template :)
What do you mean exactly for : few things about the source of the cert ?
I would like to know how I need to configure it :) Microsoft documentation is not really good about it.
Certs can come from many different sources. That walk-through is a generic walk-through that assumes a generic ADCS-based PKI which you may or may not be using and which may or not be configured similarly. There is no walkthrough that can cover the many different permutations and that's why Microsoft documentation doesn't cover it either as the basic requirement can be fulfilled in many different ways.
It's kind of like saying you need $5 dollars to buy X. You can get the required $5 in many different ways and the seller of X doesn't really care how you did it, as long as you have it to give to them.
I'm sorry but I'm not sure you answer my question.
Do I need to only bind the certificate on the default web site or I need to put "required ssl" on websites for bitlocker too ?
bind a certificate on default web site doesn't means the website is only https...
In the documentation, there is an excellent step by step for the database certificate... but there is nothing for the website. I just would like to set up it correctly
As noted, follow the walkthrough provide by Maurice where he specifies require SSL.
Thank you :)
