AD certs
-
Thank you grammar police. I usually catch stuff like that, but that one got by me.
At any rate, I tried to follow the article at the beginning of the post, and I'm getting the error:
The wizard cannot be started because of one or more of the following conditions:
- There are no trusted certification authorities (CAs) available.
- You do not have the permissions to request certificates from the available CAs.
- The available CAs issue certificates for which you do not have permissions.
My question though, is if the certificate auto enrollment is even needed for normal domain operations?
-
@scottalanmiller said in AD certs:
@wirestyle22 said in AD certs:
Active Directory has roles. Bakeries have rolls.
You're really not helping my diet.
Don't stop your diet now, you're on a roll!
He's off the rolls!!!
-
@scottalanmiller said in AD certs:
@wirestyle22 said in AD certs:
Active Directory has roles. Bakeries have rolls.
You're really not helping my diet.
Don't stop your diet now, you're on a roll!
He's off the rolls!!!
Now I'm all about the enROLLment.
-
@Mike-Davis said in AD certs:
@scottalanmiller said in AD certs:
@wirestyle22 said in AD certs:
Active Directory has roles. Bakeries have rolls.
You're really not helping my diet.
Don't stop your diet now, you're on a roll!
He's off the rolls!!!
Now I'm all about the enROLLment.
I like my enROLLments with lots of butter, nice and warm...
-
*twitch* *stutter*
-
*twitch*
Autoenrollment is good for domains. Could you imagine having to update the certificates on every system in the domain by hand?
-
-
Any progress on this issue?
-
@Mike-Davis said in AD certs:
*twitch*
Autoenrollment is good for domains. Could you imagine having to update the certificates on every system in the domain by hand?
So how do you test to make sure it's working?
If the systems start to tombstone, then you know you have issues, at which point get the
-
There is a bit of a delay since the admin had other services running on his domain controller. He has a SQL that he has to address before he can reboot the other domain controller. I got AD replicating between the domain controllers and DHCP/DNS working properly, but as far as the AD certs, I'm bowing out of this one at this point. I don't know enough about the underpinnings to know how to test it properly since an attempt to set it up was botched halfway through.
I'll be interested to hear myself how it is resolved.