Solved

Certificate, certificate services, windows, server

Posted on 2007-11-20
5
304 Views
Last Modified: 2010-04-18
Hello,
Our certificate server is only issuing certificates for server authentication and not user authentication.  How can I force certificates to be issued allowing this role?
thanks
0
Comment
Question by:CreamyG
  • 3
  • 2
5 Comments
 
LVL 26

Expert Comment

by:Pber
Comment Utility
I boils down to what application is requesting it and the template you have defined on your CA.
Items like, EFS, Secure Email and and general Client Authentiation are a few user based authentications

On your CA, you'll need a template for those.

Load up your Certificate Authority MMC and target it at your CA.  Select Certificate Templates and check to see if you have User templates assigned.  If not, right click the Certificate template node and select "New Certificate Template to issue", then select the template you which to issue.
0
 
LVL 1

Author Comment

by:CreamyG
Comment Utility
Thanks.  User is assigned.  I am trying to get IIS default website to request a certificate that will do both client and server authentication.  The certificate that gets issued however will only do server.  Any ideas?
0
 
LVL 26

Expert Comment

by:Pber
Comment Utility
IIS is hardcoded to request only the Web Server template which is Server authentication only.  You have to manually issue a "User" or custom template then install it on IIS.
0
 
LVL 1

Author Comment

by:CreamyG
Comment Utility
Thanks, how would I manually issue it?
0
 
LVL 26

Accepted Solution

by:
Pber earned 250 total points
Comment Utility
0

Featured Post

6 Surprising Benefits of Threat Intelligence

All sorts of threat intelligence is available on the web. Intelligence you can learn from, and use to anticipate and prepare for future attacks.

Join & Write a Comment

So you have two Windows Servers and you have a directory/folder/files on one that you'd like to mirror to the other?  You don't really want to deal with DFS or a 3rd party solution like Doubletake. You can use Robocopy from the Windows Server 200…
Many of us need to configure DHCP server(s) in their environment. We can do that simply via DHCP console on server or using MMC snap-in on each computer with Administrative Tools installed in a network. But what if we have to configure many DHCP ser…
In this seventh video of the Xpdf series, we discuss and demonstrate the PDFfonts utility, which lists all the fonts used in a PDF file. It does this via a command line interface, making it suitable for use in programs, scripts, batch files — any pl…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

771 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

10 Experts available now in Live!

Get 1:1 Help Now