With all the help I received regarding PKI and CAs, I now more confident in using them, after testing it some times on a home Lab. Now I have a question, and after looking for it on the Internet didn't found an answer.
I thinking of using a RADIUS server to use authentication through certificates (computer certificates) from my Enterprise CA (domain joined). With that I want to verify the certificate issuer so I can validate the authenticity. When this is done is there a connection to the CA server or the Trusted Authority on the RADIUS server contain the certificates (that I distributed through GPO - for the offline CA)? Just in case if the CA is down temporarily or went bad and I need to add a new one.
Thank you in advance for the help! Keep the great work!