Active Directory Certificate Server Enhancements (aka Windows PKI) in Windows Server "Longhorn" guide by Carsten Kinder with help of PKI PMs was finally released to web. This comprehensive document contains information about new PKI features in Windows Server "Longhorn" such as:
- Cryptography API: Next Generation (aka CNG) support in CAs to provide crypto agility
- Unattended and integrated interactive setup options (without need to disable AIA in root CA cert)
- Certificate templates v3
- Restricted Enrollment Agent and Restricted Certificate Managers support (very needed in enterprise scenarios)
- many other new features and OCSP standard support
So it's very recommended to study.