• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 3106
  • Last Modified:

"No Certificate Templates Could Be Found" error message when a user requests certificate from CA Web enrollment pages

I am trying to renew my LCS certificate because it expires tomorrow morning.I have been trying to follow the information in this link.


I was following section four which is titled "4. If the customer has a 2003 Enterprise Edition, Enterprise CA." When I go to http://server/certsrv, I get the error "no certificate templates could be found you do not have permission to request a certificate from this ca or an error occurred while accessing the active directory" so I am unable to request the new certificate.

I also tried following step three titled "3. If the customer has a 2003 Standard Edition, Enterprise CA" and I was able to create the certificate and install it. However instead of being good for a year, the new certificate expires tomorrow morning just like the current one that is being used. Not sure why that happened.

I was trying to follow directions at this link.


However, I don't understand this part of it.

View the Active Directory dNSHostName attribute on the pkiEnrollmentService object. This object is in the following location:
CN=CertificateServer,CN=Enrollment Services,CN=Public Key Services,CN=Services,CN=Configuration,DC=MyDomain,DC=com

I opened ASDIedit but I am unable to find the place for the dNSHostName attribute.


  • 2
1 Solution
JustinGSEIWIAuthor Commented:
I was reading a Microsoft article and it said "A CA cannot issue a certificate with a longer validity period than its own CA certificate." I think this is the reason the new certificate I created will expire tomorrow. Looking at the CA list of issued certificates, all the certificates expire tomorrow. So I think what needs to be done is that some sort of main certificate needs to be renewed. I am not sure if this will occur automatically or if I need to do something.
JustinGSEIWIAuthor Commented:
I found what I needed in the two links below. First I needed to renew my CA and then I could renew my certificate for communications server.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell┬« is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now