A new whitepaper was release this week describing how to set up, configure and troubleshoot Active Directory Certificate Services (AD CS) with Windows Server 2008 Failover Clustering.
With Windows Server 2003 and earlier versions, organizations had to deploy multiple certification authorities (CAs) to provide redundancy in case a critical network server failed. You can still have multiple CAs operating in your Active Directory forest, but with failover clustering there is no need to deploy more than one CA to protect AD CS from unexpected failure.
This white paper explains the detailed steps that are required to set up failover clustering with Windows Server 2008 and to run AD CS on shared storage with a network hardware security module (HSM).
Configuring and Troubleshooting Certification Authority Clustering in Windows Server 2008