| English | German |
| Active Directory Certificate Services | Active Directory-Zertifikatdienste (A software service that issues certificates for a particular certification authority (CA). It provides customizable services for issuing and managing certificates for the enterprise. Certificates can be used to provide authentication support, including secure e-mail, Web-based authentication, and smart-card authentication) |
| certificate authentication | Zertifikatauthentifizierung (A form of IIS authentication in which IIS accepts client-certificates used to prove the client's identity. Using this form of authentication, IIS can optionally map a client certificate to a Windows user account by using an internal mapping table or Active Directory) |
| certificate chain | Zertifikatkette (A sequence of certificates, where each certificate in the sequence is signed by the subsequent certificate. The last certificate in the chain is normally a self-signed certificate) |
| certificate chaining | Zertifikatsverkettung (A process that builds one or more certificate paths. The certificate paths may or may not trace up to a self-signed or root certificate) |
| certificate enrollment | Zertifikatregistrierung (The process of requesting, receiving, and installing a certificate) |
| certificate enrollment policy | Zertifikatregistrierungsrichtlinie (A set of rules governing certificate enrollment) |
| Certificate Enrollment Policy Web Service | Zertifikatregistrierungsrichtlinien-Webdienst (A role service within the AD CS server role that enables users and computers to obtain certificate enrollment policy information even when the computer is not a member of a domain or if a domain-joined computer is temporarily outside the security boundary of the corporate network) |
| Certificate Enrollment Web Service | Zertifikatregistrierungs-Webdienst (A role service within the AD CS server role that enables users and computers to enroll for and renew certificates even when the computer is not a member of a domain or if a domain-joined computer is temporarily outside the security boundary of the computer network) |
| certificate issuance | Zertifikatausstellung (The process of generating, issuing and publishing certificates, typically in accordance with the applicable certificate issuance policy) |
| certificate issuance policy | Zertifikatausstellungsrichtlinie (A set of rules that defines all the security-relevant requirements (such as key management and authentication levels) that must be met when certificates are issued to users) |
| certificate issuer | Zertifikataussteller (The certification authority which issued the certificate to the subject) |
| certificate manager | Zertifikat-Manager (A Certificate Lifecycle Manager (CLM) user that has the appropriate CLM permissions to either administer other CLM users or to administer the CLM application itself) |
| certificate manager Web portal | Zertifikat-Manager-Webportal (A Web application running on the Certificate Lifecycle Manager (CLM) server. This portal allows certificate administrators to administer other users' certificates and smart cards. The certificate subscriber and certificate manager Web portals are both accessed through the same universal resource locator (URL); however, the content displayed is based on a user's roles and permissions) |
| certificate request | Zertifikatanforderung (A specially formatted electronic message (sent to a CA) used to request a certificate. The request must contain the information required by the CA to authenticate the request, plus the public key of the entity requesting the certificate. All the information necessary to create the request is mapped to a CERT_REQUEST_INFO structure) |
| certificate revocation | Zertifikatsperre (The process of revoking a digital certificate) |
| certificate revocation checking | Zertifikatsperrüberprüfung (A way to see if a certificate used to sign a message is valid. Outlook can check the status of the certificate from the issuing certification authority's database) |
| certificate revocation list | Zertifikatsperrliste (A document maintained and published by a certification authority that lists certificates that have been revoked) |
| certificate revocation list distribution point | Verteilungspunkt für die Zertifikatssperrliste (A certificate extension that indicates where the certificate revocation list for a CA can be retrieved. It can contain none, one, or many HTTP, file, or LDAP URLs) |
| Certificate Services | Zertifikatdienste (A software service that issues certificates for a particular certification authority. It provides customizable services for issuing and managing certificates for the enterprise. Certificates can be used to provide authentication support, including secure e-mail, Web-based authentication, and smart-card authentication) |
| certificate store | Zertifikatspeicher (A permanent storage where certificates, certificate revocation lists, and certificate trust lists are stored. A certificate store can also be temporary when working with session-based certificates) |
| certificate subscriber | Zertifikatabonnent (A user that needs certificates with our without smart cards. Certificate subscribers can access a small number of functions that can only be performed for the user's own certificates) |
| certificate subscriber Web portal | Zertifikatabonnent-Webportal (A Web application running on the Certificate Lifecycle Manager (CLM) server. This component of the CLM server interacts directly with users in a self-service mode. The specific functionality is based upon Active Directory group memberships and permissions. The certificate subscriber and certificate manager Web portals are both accessed through the same universal resource locator (URL); however, the content displayed is based on a user's roles and permissions) |
| certificate template | Zertifikatvorlage (A Windows construct that specifies the format and content of certificates based on their intended usage. When requesting a certificate from a Windows enterprise certification authority (CA), certificate requestors can select from a variety of certificate types that are based on certificate templates) |
| certificate trust chain | Zertifikatvertrauenskette (A sequence of certificates, where each certificate in the sequence is signed by the subsequent certificate. The last certificate in the chain is normally a self-signed certificate) |
| certificate trust list | Zertifikatvertrauensliste (A signed list of root certification authority certificates that an administrator considers reputable for designated purposes, such as client authentication or secure e-mail) |
| certificate trust validation | Zertifikatvertrauensüberprüfung (The validation process that determines if a certificate chains to a root CA certificate that is trusted by the actual security context) |
| Health Certificate Enrollment Protocol | Health Certificate Enrollment-Protokoll (The protocol used by the NAP agent to request health certificates from the Health Registration Authority (HRA) and to prove the health of a client computer) |
| Office Communications Server Certificate Wizard | Office Communications Server-Zertifikat-Assistent (The wizard that guides users through the process of configuring certificates for Office Communications Server) |
| Online Certificate Status Protocol | Online Certificate Status-Protokoll (A protocol that allows real-time validation of a certificate's status by having the CryptoAPI make a call to an OCSP responder and the OCSP responder providing an immediate validation of the revocation status for the presented certificate. Typically, an OCSP responder responds with the revocation status check request based on the certificate revocation list (CRL) or other forms of revocation status it retrieves from the certification authorities) |
| Online Certificate Status Protocol responder | Online Certificate Status-Protokoll-Responder (A computer on which the Online Responder service and Online Responder web proxy are running) |
| SSL client certificate mapping authentication | Authentifizierung durch SSL-Clientzertifikatszuordnung (A method of authentication where certificates are used on the client and a mapping is made on the server (or possibly on the Active directory domain controller) to determine which client certificates should be allowed access to the site) |
