Your network consists of one Active Directory domain that contains two servers that run Windows Server 2008 named Server1 and Server2.
Server1 runs Active Directory Certificate Services (AD CS) and is configured as a certification authority (CA).
Server2 runs Internet Information Services (IIS) and hosts a secure Web service.
External users must subscribe in order to access the Web service.
The Web service accepts subscriptions only from client computers that run Windows XP Service Pack 2 or Windows Vista.
The relevant portion of the network is configured as shown in the following diagram:
You need to ensure that subscribers can successfully connect to the Web service on Server2 through HTTPS.
Users must not receive any certificate-related errors.
What should you do on Server2?
A.
Install a server certificate issued by Server1.
B.
Issue and install a self-signed server certificate.
C.
Install a server certificate issued by a public CA.
D.
Install the trusted root CA certificate issued by Server1.