![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(185.6, 38%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EFN%3C/text%3E%3C/svg%3E)
Microsoft Intune
A Microsoft cloud-based management solution that offers mobile device management, mobile application management, and PC management capabilities.
4,720 questions
Hello Fahad
Migrating to Microsoft Cloud PKI can be a great opportunity to modernize your certificate management and security posture.
Regarding your question, yes, you can migrate your existing on-premises certificate setup to Microsoft Cloud PKI. Microsoft Cloud PKI provides various tools and features to help you migrate your certificates, including:
- Certificate Migration Tool (CMT): This tool allows you to migrate certificates from an on-premises CA to Azure Key Vault or Azure Certificate Manager.
- Certificate Manager: This service provides a centralized platform for managing certificates, including certificate templates. You can create custom certificate templates in Certificate Manager and apply them to your resources.
- Azure Key Vault: This service provides a secure storage and management platform for sensitive data, including certificates. You can store and manage your certificates in Azure Key Vault and use it as a trusted root CA.
To get started, you'll need to:
- Set up your Microsoft Cloud PKI infrastructure, including creating a certificate authority (CA) and deployment.
- Use the Certificate Migration Tool (CMT) to migrate your existing certificates to Azure Key Vault or Azure Certificate Manager.
- Create custom certificate templates in Certificate Manager to match your existing on-premises templates.
- Update your applications and services to use the new cloud-based certificates.
For more information on migrating your on-premises PKI setup to Microsoft Cloud PKI, I recommend checking out the following resources:
- Microsoft documentation: Migrate your on-premises certificate infrastructure to Azure
- Microsoft documentation: Certificate Migration Tool (CMT)
- Microsoft documentation: Azure Certificate ManagerMigrating to Microsoft Cloud PKI can be a great opportunity to modernize your certificate management and security posture. Regarding your question, yes, you can migrate your existing on-premises certificate setup to Microsoft Cloud PKI. Microsoft Cloud PKI provides various tools and features to help you migrate your certificates, including:
- Certificate Migration Tool (CMT): This tool allows you to migrate certificates from an on-premises CA to Azure Key Vault or Azure Certificate Manager.
- Certificate Manager: This service provides a centralized platform for managing certificates, including certificate templates. You can create custom certificate templates in Certificate Manager and apply them to your resources.
- Azure Key Vault: This service provides a secure storage and management platform for sensitive data, including certificates. You can store and manage your certificates in Azure Key Vault and use it as a trusted root CA.
- Set up your Microsoft Cloud PKI infrastructure, including creating a certificate authority (CA) and deployment.
- Use the Certificate Migration Tool (CMT) to migrate your existing certificates to Azure Key Vault or Azure Certificate Manager.
- Create custom certificate templates in Certificate Manager to match your existing on-premises templates.
- Update your applications and services to use the new cloud-based certificates.
- Microsoft documentation: Migrate your on-premises certificate infrastructure to Azure
- Microsoft documentation: Certificate Migration Tool (CMT)
- Microsoft documentation: Azure Certificate Manager