Certificate Templates and Web Access to Certs

P

Paul Adare - MVP

On Sun, 31 Aug 2008 05:41:33 -0700 (PDT), doctordns wrote:

> I'm trying to add a new certificate template. I've deployed it as per
> http://technet.microsoft.com/en-us/library/cc783016.aspx, but when I
> go to the certsrv web site (http://dc1/certsrv), I can't see the
> template there. I know I'm probably just missing a simple step - but
> all suggestions gratefully received.

What template did you duplicate?

--
Paul Adare
MVP - Identity Lifecycle Manager
http://www.identit.ca
The Web brings people together because no matter what kind of a twisted
sexual mutant you happen to be, you've got millions of pals out there. Type
in 'Find people that have sex with goats that are on fire' and the computer
will ask, 'Specify type of goat.'
- Jason Alexander (from Seinfeld)
 
D

doctordns

RAS and IAS Server.

I've created a duplicate and both the original and duplicate are seen
in the CA's Certificate Template folder. I'm sure I'm just missing
somethine really simple, but can't see that template in the certsrv
web page.

On Aug 31, 3:31 pm, Paul Adare - MVP <pkad...@gmail.com> wrote:
> On Sun, 31 Aug 2008 05:41:33 -0700 (PDT), doctordns wrote:
> > I'm trying to add a new certificate template. I've deployed it as per
> >http://technet.microsoft.com/en-us/library/cc783016.aspx, but when I
> > go to the certsrv web site (http://dc1/certsrv), I can't see the
> > template there. I know I'm probably just missing a simple step - but
> > all suggestions gratefully received.
>
> What template did you duplicate?
>
> --
> Paul Adare
> MVP - Identity Lifecycle Managerhttp://www.identit.ca
> The Web brings people together because no matter what kind of a twisted
> sexual mutant you happen to be, you've got millions of pals out there. Type
> in 'Find people that have sex with goats that are on fire' and the computer
> will ask, 'Specify type of goat.'
> - Jason Alexander (from Seinfeld)
 
B

Brian Komar \(MVP\)

- What version of the OS are you working with (2003/2008)
- What SKU of the operating system (enterprise/standard)
Brian

"doctordns" <doctordns@gmail.com> wrote in message
news:5d1271c3-f6e4-477c-9267-17b4624b82b5@r66g2000hsg.googlegroups.com...
RAS and IAS Server.

I've created a duplicate and both the original and duplicate are seen
in the CA's Certificate Template folder. I'm sure I'm just missing
somethine really simple, but can't see that template in the certsrv
web page.

On Aug 31, 3:31 pm, Paul Adare - MVP <pkad...@gmail.com> wrote:
> On Sun, 31 Aug 2008 05:41:33 -0700 (PDT), doctordns wrote:
> > I'm trying to add a new certificate template. I've deployed it as per
> >http://technet.microsoft.com/en-us/library/cc783016.aspx, but when I
> > go to the certsrv web site (http://dc1/certsrv), I can't see the
> > template there. I know I'm probably just missing a simple step - but
> > all suggestions gratefully received.
>
> What template did you duplicate?
>
> --
> Paul Adare
> MVP - Identity Lifecycle Managerhttp://www.identit.ca
> The Web brings people together because no matter what kind of a twisted
> sexual mutant you happen to be, you've got millions of pals out there.
> Type
> in 'Find people that have sex with goats that are on fire' and the
> computer
> will ask, 'Specify type of goat.'
> - Jason Alexander (from Seinfeld)
 
D

doctordns

Server 2003 (SP2)
Enterprise SKU

On Aug 31, 5:24 pm, "Brian Komar \(MVP\)"
<brian.ko...@nospam.identit.ca> wrote:
> - What version of the OS are you working with (2003/2008)
> - What SKU of the operating system (enterprise/standard)
> Brian
>
> "doctordns" <doctor...@gmail.com> wrote in message
>
> news:5d1271c3-f6e4-477c-9267-17b4624b82b5@r66g2000hsg.googlegroups.com...
> RAS and IAS Server.
>
> I've created a duplicate and both the original and duplicate are seen
> in the CA's Certificate Template folder. I'm sure I'm just missing
> somethine really simple, but can't see that template in the certsrv
> web page.
>
> On Aug 31, 3:31 pm, Paul Adare - MVP <pkad...@gmail.com> wrote:
>
>
>
> > On Sun, 31 Aug 2008 05:41:33 -0700 (PDT), doctordns wrote:
> > > I'm trying to add a new certificate template. I've deployed it as per
> > >http://technet.microsoft.com/en-us/library/cc783016.aspx, but when I
> > > go to the certsrv web site (http://dc1/certsrv), I can't see the
> > > template there. I know I'm probably just missing a simple step - but
> > > all suggestions gratefully received.
>
> > What template did you duplicate?
>
> > --
> > Paul Adare
> > MVP - Identity Lifecycle Managerhttp://www.identit.ca
> > The Web brings people together because no matter what kind of a twisted
> > sexual mutant you happen to be, you've got millions of pals out there.
> > Type
> > in 'Find people that have sex with goats that are on fire' and the
> > computer
> > will ask, 'Specify type of goat.'
> > - Jason Alexander (from Seinfeld)- Hide quoted text -
>
> - Show quoted text -
 
D

doctordns

Windows Server 2003 Enterprise - running SP2

On Aug 31, 5:24 pm, "Brian Komar \(MVP\)"
<brian.ko...@nospam.identit.ca> wrote:
> - What version of the OS are you working with (2003/2008)
> - What SKU of the operating system (enterprise/standard)
> Brian
>
> "doctordns" <doctor...@gmail.com> wrote in message
>
> news:5d1271c3-f6e4-477c-9267-17b4624b82b5@r66g2000hsg.googlegroups.com...
> RAS and IAS Server.
>
> I've created a duplicate and both the original and duplicate are seen
> in the CA's Certificate Template folder. I'm sure I'm just missing
> somethine really simple, but can't see that template in the certsrv
> web page.
>
> On Aug 31, 3:31 pm, Paul Adare - MVP <pkad...@gmail.com> wrote:
>
>
>
> > On Sun, 31 Aug 2008 05:41:33 -0700 (PDT), doctordns wrote:
> > > I'm trying to add a new certificate template. I've deployed it as per
> > >http://technet.microsoft.com/en-us/library/cc783016.aspx, but when I
> > > go to the certsrv web site (http://dc1/certsrv), I can't see the
> > > template there. I know I'm probably just missing a simple step - but
> > > all suggestions gratefully received.
>
> > What template did you duplicate?
>
> > --
> > Paul Adare
> > MVP - Identity Lifecycle Managerhttp://www.identit.ca
> > The Web brings people together because no matter what kind of a twisted
> > sexual mutant you happen to be, you've got millions of pals out there.
> > Type
> > in 'Find people that have sex with goats that are on fire' and the
> > computer
> > will ask, 'Specify type of goat.'
> > - Jason Alexander (from Seinfeld)- Hide quoted text -
>
> - Show quoted text -
 
B

Brian Komar \(MVP\)

Have you tried to request the certificate using the certificates MMC focused
on the local machine.
RAS and IAS is typically deployed:
- Manually using the Certificate MMC
- Using autoenrollment
When you use the Web interface, the security context is the current user,
and you are attempting to request a *computer* certificate, hence the
failure. In fact, with 2008, the ability to even request computer
certificates is removed. Pretty much, the only computer cert you can request
is one that has the user provide teh subject name in the request.
Brian

"doctordns" <doctordns@gmail.com> wrote in message
news:5472ce89-6b1b-42f0-ac80-b99e771ea4be@e53g2000hsa.googlegroups.com...
Windows Server 2003 Enterprise - running SP2

On Aug 31, 5:24 pm, "Brian Komar \(MVP\)"
<brian.ko...@nospam.identit.ca> wrote:
> - What version of the OS are you working with (2003/2008)
> - What SKU of the operating system (enterprise/standard)
> Brian
>
> "doctordns" <doctor...@gmail.com> wrote in message
>
> news:5d1271c3-f6e4-477c-9267-17b4624b82b5@r66g2000hsg.googlegroups.com...
> RAS and IAS Server.
>
> I've created a duplicate and both the original and duplicate are seen
> in the CA's Certificate Template folder. I'm sure I'm just missing
> somethine really simple, but can't see that template in the certsrv
> web page.
>
> On Aug 31, 3:31 pm, Paul Adare - MVP <pkad...@gmail.com> wrote:
>
>
>
> > On Sun, 31 Aug 2008 05:41:33 -0700 (PDT), doctordns wrote:
> > > I'm trying to add a new certificate template. I've deployed it as per
> > >http://technet.microsoft.com/en-us/library/cc783016.aspx, but when I
> > > go to the certsrv web site (http://dc1/certsrv), I can't see the
> > > template there. I know I'm probably just missing a simple step - but
> > > all suggestions gratefully received.
>
> > What template did you duplicate?
>
> > --
> > Paul Adare
> > MVP - Identity Lifecycle Managerhttp://www.identit.ca
> > The Web brings people together because no matter what kind of a twisted
> > sexual mutant you happen to be, you've got millions of pals out there.
> > Type
> > in 'Find people that have sex with goats that are on fire' and the
> > computer
> > will ask, 'Specify type of goat.'
> > - Jason Alexander (from Seinfeld)- Hide quoted text -
>
> - Show quoted text -
 
D

doctordns

Thanks - now I'm sure I knew all that! :)

Worked great - many thanks.

On Aug 31, 6:53 pm, "Brian Komar \(MVP\)"
<brian.ko...@nospam.identit.ca> wrote:
> Have you tried to request the certificate using the certificates MMC focused
> on the local machine.
> RAS and IAS is typically deployed:
> - Manually using the Certificate MMC
> - Using autoenrollment
> When you use the Web interface, the security context is the current user,
> and you are attempting to request a *computer* certificate, hence the
> failure. In fact, with 2008, the ability to even request computer
> certificates is removed. Pretty much, the only computer cert you can request
> is one that has the user provide teh subject name in the request.
> Brian
>
> "doctordns" <doctor...@gmail.com> wrote in message
>
> news:5472ce89-6b1b-42f0-ac80-b99e771ea4be@e53g2000hsa.googlegroups.com...
> Windows Server 2003 Enterprise - running SP2
>
> On Aug 31, 5:24 pm, "Brian Komar \(MVP\)"
>
>
>
> <brian.ko...@nospam.identit.ca> wrote:
> > - What version of the OS are you working with (2003/2008)
> > - What SKU of the operating system (enterprise/standard)
> > Brian
>
> > "doctordns" <doctor...@gmail.com> wrote in message
>
> >news:5d1271c3-f6e4-477c-9267-17b4624b82b5@r66g2000hsg.googlegroups.com....
> > RAS and IAS Server.
>
> > I've created a duplicate and both the original and duplicate are seen
> > in the CA's Certificate Template folder. I'm sure I'm just missing
> > somethine really simple, but can't see that template in the certsrv
> > web page.
>
> > On Aug 31, 3:31 pm, Paul Adare - MVP <pkad...@gmail.com> wrote:
>
> > > On Sun, 31 Aug 2008 05:41:33 -0700 (PDT), doctordns wrote:
> > > > I'm trying to add a new certificate template. I've deployed it as per
> > > >http://technet.microsoft.com/en-us/library/cc783016.aspx, but when I
> > > > go to the certsrv web site (http://dc1/certsrv), I can't see the
> > > > template there. I know I'm probably just missing a simple step - but
> > > > all suggestions gratefully received.
>
> > > What template did you duplicate?
>
> > > --
> > > Paul Adare
> > > MVP - Identity Lifecycle Managerhttp://www.identit.ca
> > > The Web brings people together because no matter what kind of a twisted
> > > sexual mutant you happen to be, you've got millions of pals out there..
> > > Type
> > > in 'Find people that have sex with goats that are on fire' and the
> > > computer
> > > will ask, 'Specify type of goat.'
> > > - Jason Alexander (from Seinfeld)- Hide quoted text -
>
> > - Show quoted text -- Hide quoted text -
>
> - Show quoted text -
 
You must log in or register to reply here.

Similar threads

K
  • Article
Manufacturing for tomorrow: Microsoft announces new industrial AI innovations from the cloud to the factory floor
Replies
0
Views
93
Kathleen Mitford, CVP, Global Industry
K
Y
Certificate Templates Folder Missing From Certification Authority Hierarchy
Replies
0
Views
401
YeskeJA
Y
R
  • Article
Our top smart browser features can give you an edge this back-to-school season
Replies
0
Views
106
Roger Capriotti
R
E
CA Issues, Web Enrollment
Replies
0
Views
382
Ek4
E
M
  • Article
Inspired by challenges in your workday: latest innovations and updates from Microsoft Edge
Replies
0
Views
320
Microsoft Edge Team
M
Back
Top Bottom