Warning: iconv_mime_decode() [function.iconv-mime-decode]: Malformed string in /home/secureg/public_html/lib/standard.lib.php on line 2251

Warning: iconv_mime_decode() [function.iconv-mime-decode]: Malformed string in /home/secureg/public_html/lib/standard.lib.php on line 2251

Warning: iconv_mime_decode() [function.iconv-mime-decode]: Malformed string in /home/secureg/public_html/lib/standard.lib.php on line 2251

Warning: iconv_mime_decode() [function.iconv-mime-decode]: Malformed string in /home/secureg/public_html/lib/standard.lib.php on line 2251
Creating Site Server Signing Certificate Template
Creating Site Server Signing Certificate Template

Creating Site Server Signing Certificate Template
Secure Home | Search | About
Login Password
Register Now! Lost Password?
 Microsoft Applications Security    Post an article   get this group's latest topics as an RSS feed add this group's latest topics to your My MSN content add this group's latest topics to your My Yahoo content add this group's latest topics to your Google content
Subject Author Date
Creating Site Server Signing Certificate Template Eli 05-13-2008
Posted by =?Utf-8?B?RWxp?= on May 16, 2008, 2:09 am
If you were  Registered and logged in, you could reply and use other advanced thread options
Permissions were checked-everything is in order, plus I’m using a default
“administrator” account which is part of all admin groups.
I visited the link that you provided, edited the registry but no changes.
As fas as replication it’s been more than a day.


"Miles Li [MSFT]" wrote:

>
> Hello,
>
> I am sorry that I have made a lapse in my previous reply.
>
> From my understanding, you have enabled the signing certificate template
> (you can view the enabled template in the CA MMC Certificate Template),
> However, when you want to enroll a certificate via web enrollment you can't
> find that specific template in the list. Please feel free to correct me if
> there is any misunderstandings.
>
> Please check the security on that template according to the following step:
>
> 1.        Run "certtmpl.msc" in the commend prompt to open template manager.
>
> 2.        Right click the signing certificate template--->properties--->Security.
> Check whether the user account that perform the web enrollment request on
> the member server has both READ and ENROLL permission.
>
> Note: By default, Domain admins and Enterprise admins groups have the both
> READ and ENROLL permission. This means if you submit the request by a
> non-admin user account (standard user account) the template will not shown
> in the list for the user has no ENROLL permission. (by default, the
> Authenticated Users have the READ permission that is inherited from the
> Computer Template)
>
> Meanwhile, please also note that you may experience latency before the
> template list gets updated.
>
> 281260 A Certificate Request That Uses a New Template Is
> Unsuccessful
> http://support.microsoft.com/default.aspx?scid=kb;EN-US;281260
>
> Hope it helps.
>
>
> Sincerely,
> Miles Li
>
> Microsoft Online Partner Support
> Microsoft Global Technical Support Center
>
> Get Secure! - www.microsoft.com/security
> =====================================================
> When responding to posts, please "Reply to Group" via your newsreader so
> that others may learn and benefit from your issue.
> =====================================================
> This posting is provided "AS IS" with no warranties, and confers no rights.
>
>

Posted by Miles Li [MSFT] on May 19, 2008, 6:50 am
If you were  Registered and logged in, you could reply and use other advanced thread options
Hello,

Thanks for keep working on it.

Please help to verify the following settings:

1.        Verify the template is in the Certificate Authority--->CA
name--->certificate templates and is prepared to issue. And the certificate
template has the "Publish certificates in Active Directory" option checked.

2.        Will other templates duplicated be shown in the web enrollment?

3.        Which templates are displayed in the web enrollment certificate template
list?

4.        Does it work if you open the web page on the domain controller or the CA
server?

5.        Could you please describe the topology of your domain in detail? Is it
a multi-site domain?



Sincerely,
Miles Li

Microsoft Online Partner Support
Microsoft Global Technical Support Center

Get Secure! - www.microsoft.com/security
=====================================================
When responding to posts, please "Reply to Group" via your newsreader so
that others may learn and benefit from your issue.
=====================================================
This posting is provided "AS IS" with no warranties, and confers no rights.


Posted by =?Utf-8?B?Tmlscw==?= on May 19, 2008, 10:22 am
If you were  Registered and logged in, you could reply and use other advanced thread options
When you duplicated the Computer template, did you select "Windows Server
2008, Enterprise Edition" as supported platform? In my experience, doing that
will prevent the template from showing up in the web page. When you select
"Windows Server 2003, Enterprise Edition" the template -will- show up.

Posted by =?Utf-8?B?RWxp?= on May 19, 2008, 12:18 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
I did select 2003

"Nils" wrote:

> When you duplicated the Computer template, did you select "Windows Server
> 2008, Enterprise Edition" as supported platform? In my experience, doing that
> will prevent the template from showing up in the web page. When you select
> "Windows Server 2003, Enterprise Edition" the template -will- show up.

Posted by Miles Li [MSFT] on May 23, 2008, 5:54 am
If you were  Registered and logged in, you could reply and use other advanced thread options
Hello,

I am just writing in to see if you have obtained the opportunity to collect
the information. If anything is unclear with the previous information I've
provided to you, please don't hesitate to let me know.

I appreciate your time and look forward to hearing from you.


Sincerely,
Miles Li

Microsoft Online Partner Support
Microsoft Global Technical Support Center

Get Secure! - www.microsoft.com/security
=====================================================
When responding to posts, please "Reply to Group" via your newsreader so
that others may learn and benefit from your issue.
=====================================================
This posting is provided "AS IS" with no warranties, and confers no rights.


Similar ThreadsPosted
Problem with creating site server signing certificate template May 15, 2008, 2:43 pm
Creating Certificate for a wireless projector February 8, 2008, 7:12 am
Issuing Code-signing Certificate with Private Key December 27, 2007, 11:41 am
Certification Authority cannot use certificate template June 12, 2007, 11:44 am
Digital Certificate for Outlook 2007 Email encryption and signing October 9, 2007, 7:33 pm
Web enrollment, only web server template December 5, 2007, 9:41 am
Issue with enterprise internal Authenticode code signing certificate More options April 3, 2007, 8:41 am
Web Site Certificate October 8, 2005, 10:53 pm
how to get a web site certificate through my stand alone CA December 6, 2005, 6:03 am
Necessity for Certificate Services Web Site October 16, 2006, 3:47 pm

The site map in XML format XML site map

Contact Us | Privacy Policy