PKI Services provides two ActiveX programs as alternatives to CAPICOM to provide function that PKI Services requires to install a renewed certificate. These programs are:

• PKIXEnroll, for Windows XP and earlier versions of Windows
• PKICEnroll, for Windows Vista and later versions of Windows

Both ActiveX programs require the Microsoft C Runtime Library and the Microsoft Active Template Library. PKI Services provides a Microsoft installer program for each of the ActiveX programs that is packaged with the ActiveX program and the required Microsoft libraries. You can use these programs in one of two ways:

• If you choose not to sign the ActiveX programs, you can use the installer programs as they are shipped.
• For greater security, you can sign the ActiveX programs, but if you do this you must repackage the installer programs. PKI Services provides the related registry files, type library files, and the license file that you need to sign and repackage the programs. After signing and repackaging the programs, you must put the .exe and .msi files in a directory on the PKI Services server that is accessible to PKI Services users so that they can install the ActiveX programs.