I am attempting to setup bitlocker network unlock for some of the laptop in the company.
I have a offline root and subordinate CA. When I request a certificate on the WDS/Bitlocker server the issued certificate list the requesting computer as the issuing computer and does not trust the certificate because its not in the root CA. I dont understand why this is happening I have to go to the subordinate CA to approve the request and after that the certificate does not show up in the personal certificate store but under the active directory user store. Any ideas?