Solved

Certificate, certificate services, windows, server

Posted on 2007-11-20
5
308 Views
Last Modified: 2010-04-18
Hello,
Our certificate server is only issuing certificates for server authentication and not user authentication.  How can I force certificates to be issued allowing this role?
thanks
0
Comment
Question by:CreamyG
  • 3
  • 2
5 Comments
 
LVL 26

Expert Comment

by:Pber
ID: 20319664
I boils down to what application is requesting it and the template you have defined on your CA.
Items like, EFS, Secure Email and and general Client Authentiation are a few user based authentications

On your CA, you'll need a template for those.

Load up your Certificate Authority MMC and target it at your CA.  Select Certificate Templates and check to see if you have User templates assigned.  If not, right click the Certificate template node and select "New Certificate Template to issue", then select the template you which to issue.
0
 
LVL 1

Author Comment

by:CreamyG
ID: 20319836
Thanks.  User is assigned.  I am trying to get IIS default website to request a certificate that will do both client and server authentication.  The certificate that gets issued however will only do server.  Any ideas?
0
 
LVL 26

Expert Comment

by:Pber
ID: 20319913
IIS is hardcoded to request only the Web Server template which is Server authentication only.  You have to manually issue a "User" or custom template then install it on IIS.
0
 
LVL 1

Author Comment

by:CreamyG
ID: 20319923
Thanks, how would I manually issue it?
0
 
LVL 26

Accepted Solution

by:
Pber earned 250 total points
ID: 20320135
0

Featured Post

Free Tool: Postgres Monitoring System

A PHP and Perl based system to collect and display usage statistics from PostgreSQL databases.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

by Batuhan Cetin Within the dynamic life of an IT administrator, we hold many information in our minds like user names, passwords, IDs, phone numbers, incomes, service tags, bills and the order from our wives to buy milk when coming back to home.…
Recently, I had the need to build a standalone system to run a point-of-sale system. I’m running this on a low-voltage Atom processor, so I wanted a light-weight operating system, but still needed Windows. I chose to use Microsoft Windows Server 200…
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …

679 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question