|
Posted by Mark Gamache on June 22, 2005, 12:24 pm
If you were Registered and logged in, you could reply and use other advanced thread options
First, your description says you have 2 forests. Autoenrollment can not
work cross forest, to my knowledge. One might be able to make that happen
with a two way trust and the right AD duct tape and super glue.
Assuming that you meant there was a single forest with a total of 3 domains,
make sure that the templates have had their permissions changed to allow
members of the other domain to enroll and auto enroll.
Cheers,
--
Mark Gamache
Certified Security Solutions
http://www.css-security.com
> I'm implementing the 802.11 wireless using Windows. My network consist of
> 2
> forest and one child. In domain A I created a Enterprise CA "its a windows
> 2003 standard server" and started auto enrolling certificate to computers
> in
> domain A and everything is fine. In the other two domains certifiactes
> arent
> getting issued. Is CA only domain specific? Can I have one CA to be
> responsible for the enterprise?I made the same group policy change in
> domain
> B and C as I did A. Thoughts?
>
> -Michael
| 
XML site map