Hi having a problem with my CA infrastructure...Parent-child domains, native mode. I placed the administrator of the child into the enterprise admin group in the parent. My DNS is not active directory intergrated (i dont think it makes a differencce however).
I created a Root CA on the DC in the parent domain, and a sub CA on the child DC. All was fine. AD was looking good. Both of course installed as enterprise CA's. Clients (other servers) begain to obtain certs. Parent clients had no problem, child clients got access denied. This was tried using the certsrv virtual directory and clients using Internet explorer.