The Auto Enrollment Gateway is a software service that acts as a connector between GlobalSign’s SaaS certificate services and an organization's Windows environment, simulating aspects of an on-premise Certificate Authority (e.g. Microsoft CA) while forwarding all certificate enrollment requests to GlobalSign. GlobalSign manages the security, high availability, and CA operations, while organizations retain control of users and policies.
The integration with Active Directory allows for quick and seamless certificate registration and provisioning without sacrificing control. By configuring AD Group Policies, the administrator dictates which users or machines are allowed which type of certificates, which are then issued from GlobalSign's highly available and secure World Class CA. By leveraging GlobalSign's expertise around cryptography and certificate management, organizations reduce their risk of data breach and service disruption.
The gateway can be used to enroll and issue certificates to all types of Active Directory Objects, including users, servers, desktops, laptops, and Domain Controllers.