Just a couple of useful links when considering using Active Directory Certificate Services (ADCS)
https://www.youtube.com/watch?v=u3e6RkpiBtw
http://kazmierczak.eu/itblog/2012/08/22/the-dos-and-donts-of-pki-microsoft-adcs/
Just use the Microsoft OIDs if your not expecting to use your certs outside of your organisation