Solved

Certificate Services Cert Template missing from Web Interface

Posted on 2016-09-14
8
43 Views
Last Modified: 2016-09-17
In my Windows 2012 R2 cluster I just copied the "Computer" template and in the new one set it so the user can input all data. Domain Admin has rull rights to the template. All DC's are in one site yet when I log into the web interface https://servername/certsrv the template is not listed? Yet if I go to the GUI an manually request the cert via the wizard it fail stating it is not in AD this may be from the fact i had the option to publish to AD select?

Why isn't the template showing up in the web interface?
0
Comment
Question by:compdigit44
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 4
8 Comments
 
LVL 11

Expert Comment

by:loftyworm
ID: 41798761
I am a bit confused as to your process and naming.  Can you be a bit more specific?  Is the cluster the cert server?
0
 
LVL 20

Author Comment

by:compdigit44
ID: 41798935
Here is my issue.. I have DMZ server which I need to mange via SCCM and need to get a computer cert on them. Since they do not have direct access to the internal CA server I created a new computer template that allows the user to type in all information for this request. I am logged in with my Domain Admin account and the Domain Admin group has the right to enroll for the cert yet I do not see if on t he drop down with access the site  https://servername/certsrv  to request the cert..
0
 
LVL 20

Author Comment

by:compdigit44
ID: 41799812
An y thoughts I why the cert is not not listed as being able to publish? Is this because it is marked for the user to import information in the request?
0
Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

 
LVL 11

Expert Comment

by:loftyworm
ID: 41800277
I have been thinking about it, and will need to give it some more thought and research.
My knee jerk reaction is that the CA (Servername) does not see it, but I will see what I can find....
0
 
LVL 11

Accepted Solution

by:
loftyworm earned 500 total points
ID: 41800436
0
 
LVL 20

Author Comment

by:compdigit44
ID: 41800663
I tried all suggestion and nothing is working. I even tried to create a exact clone of the computer template restart service etc and it will not show up yet when you go to certmgt.msc -> and request a cert you can select the template... Now about a month ago I did migrate my CA from Widnows 2008 to 2012 and this is the first new template that I created
0
 
LVL 20

Author Comment

by:compdigit44
ID: 41801561
I found I was able to get the template to be listed as published by doing it via command line as outline in the following article:

https://social.technet.microsoft.com/Forums/windowsserver/en-US/8e7404d5-801e-4ba1-8fbf-709858c91ea4/ca-missing-templates-in-enable-certificate-templates?forum=winserversecurity

Does Windows 2012 have a issue publishing version 1 & 2 templates via the GUI?
0
 
LVL 11

Expert Comment

by:loftyworm
ID: 41801670
I can't say, but it seems it does.  I hope I was helpful, if not giving the direct answer.  Good to know it works!
0

Featured Post

Office 365 Training for IT Pros

Learn how to provision tenants, synchronize on-premise Active Directory, implement Single Sign-On, customize Office deployment, and protect your organization with eDiscovery and DLP policies.  Only from Platform Scholar.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Had a business requirement to store the mobile number in an environmental variable. This is just a quick article on how this was done.
For anyone that has accidentally used newSID with Server 2008 R2 (like I did) and hasn't been able to get the server running again because you were unlucky (as I was) and had no backups - I was able to get things working by doing a Registry Hive rec…
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …
There are cases when e.g. an IT administrator wants to have full access and view into selected mailboxes on Exchange server, directly from his own email account in Outlook or Outlook Web Access. This proves useful when for example administrator want…
Suggested Courses

624 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question