PKI Template has been configured but not being deployed ?
Posted on 2015-01-30
I have deployed a 3-tier PKI infrastructure in a Windows 2008 R2 envinronment. There is a GPO in place for auto-enrollement of certigicates via a GPO. Attached to the GPO is a security filter which has a group that only contains computer objects to deploy certificates to. I have copied the Computer template, duplicated and called 'Test AE'. When I open the certificate on the test server, the 'Geneeral' tab displays the purpose of the certificate as 'All applications policies'. If I click on the 'Details' tab and scroll down, where it details 'Certificate Template Name' the value is SubCA. I expect the 'Certificate Template Name' to be 'Test AE' ?
In the AD CS management console under 'Certificate Templatres' it does have the 'Test AE' displayed. Also, the template on the security setting has the group I associated in AD to the GPO. I have the group with 'Read','Enroll' and 'Autoenroll' configured.
Does anyone have any ideas as to why this is happening ?