Re: Subordinate Certificate Server - No templates?!
From: Steven L Umbach (n9rou_at_nospam-comcast.net)
Date: 01/22/05
- Previous message: Tony Su: "Subordinate Certificate Server - No templates?!"
- In reply to: Tony Su: "Subordinate Certificate Server - No templates?!"
- Next in thread: Tony Su: "Re: Subordinate Certificate Server - No templates?!"
- Reply: Tony Su: "Re: Subordinate Certificate Server - No templates?!"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Fri, 21 Jan 2005 22:44:19 -0600
"During installation, the Win2K3 Certificate Server install complained about
being unable to connect to the Active Directory". That is probably the crux
of the problem. Look in Event Viewer to see if any pertinent events are
recorded. Not being able to contact AD is usually a network connectivity or
a dns name resolution problem with the main culprit being the problem
computer is not pointing only to AD domain controllers running dns with the
domain zone. See the link below on AD dns to make sure that the domain is
configured correctly. The support tools netdiag and dcdiag [domain
controllers only] can be very helpful in troubleshooting Active
Directory/dns problems. --- Steve
http://support.microsoft.com/default.aspx?scid=kb%3Ben-us%3B291382
http://support.microsoft.com/default.aspx?scid=kb;en-us;321708 -- applies
to Windows 2003 also
"Tony Su" <TonySu@discussions.microsoft.com> wrote in message
news:45EA062E-0BFB-4807-972A-75E3AB9259B7@microsoft.com...
> Installing a Win2K3 Certificate Server as a subordinate to a Win2K
> Certificate Server in a Win2K AD Domain with Win2K3 AD extensions. The
> Certificate Hierarchy is Enterprise AD.
>
> During installation, the Win2K3 Certificate Server install complained
> about
> being unable to connect to the Active Directory.
>
> Now, after install when I run the online enrollment as a Domain
> Administrator there is an error
>
> No certificate templates can be found. You do not have permission to
> request
> a certificate from the CA, or an error occurred accessing the Active
> Directory.
>
> As expected the templates were installed on the Win2K3 Server locally and
> viewable using the Certificate Authority MMC.
>
> - Is there a known problem configuring a Win2K3 Certificate Server as a
> subordinate to a Win2K Server (there doesn't appear to be).
> - Is there a known problem storing Win2K3 Certificate Server data in a
> Win2K
> AD?
> - Should a Win2K3 Certificate Server be able to read its local templates
> or
> should those templates somehow have been installed into the AD?
>
> TIA,
> --
> Tony Su
> www.su-networking.com
> ISA
> SBS
> Enterprise Mobile Solutions Architect
- Previous message: Tony Su: "Subordinate Certificate Server - No templates?!"
- In reply to: Tony Su: "Subordinate Certificate Server - No templates?!"
- Next in thread: Tony Su: "Re: Subordinate Certificate Server - No templates?!"
- Reply: Tony Su: "Re: Subordinate Certificate Server - No templates?!"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
