Re: Acceesing certificate

From: Anthony Guyon [MSFT] (aguyon@online.microsoft.com)
Date: 02/11/03

• Next message: Steve Clark: "Hardening Windows 2000 prior to installing a firewall"
• Previous message: David Cross [MS]: "Re: Renew Certificate with Same Key from Standalone Root CA"
• In reply to: Tapash: "Acceesing certificate"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

From: "Anthony Guyon [MSFT]" <aguyon@online.microsoft.com>
Date: Tue, 11 Feb 2003 14:56:57 -0000

You need to look at the configuration of the certificate server.
Go to the policy module and hit configure.
This is where you can set the default behaviour of an issued certificate.

If this is an Enterprise CA (AD integrated) it must be able to validate the
user object against which you are issueing. Also users must have enroll
which you can check by running dssite.msc and doing show services mode and
checking the ace's of the cert templates residing there. Have you configured
the CA to issue a user certificate? You can do this by using the CA snapin
and looking at Policy Settings.

Regards
Anthony.
This posting is provided "AS IS" with no warranties, and confers no rights.

"Tapash" <tapash.paul@wipro.com> wrote in message
news:042a01c2d1d7$de532540$a401280a@phx.gbl...
> Hi
> I have installed certificate Server .
> Now when I am requesting a certificate selecting
> UserCertificate it is giving
>
>
>
> Microsoft Certificate Services -- TapashSSL Home
> Certificate Request Denied
> Your certificate request was denied.
> Contact your administrator for further information
>
>
> Can U pls tell me where is the mistake and how to request
> a certificate that either goes to pending or issuing
> certificate.
>
> Regards
> Tapash

• Next message: Steve Clark: "Hardening Windows 2000 prior to installing a firewall"
• Previous message: David Cross [MS]: "Re: Renew Certificate with Same Key from Standalone Root CA"
• In reply to: Tapash: "Acceesing certificate"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages RE: SIMple SSL question ?? ... "Remove the certificate request file and store the SSL certificate file in a ... The private key is not passed in the certificate request, ... (microsoft.public.dotnet.security) RE: SIMple SSL question ?? ... I believe your book is instructing you to keep the private key secure. ... you use the certificate request wizard in IIS to install the cert after it's ... the certificate that's just been installed. ... If an attacker retrievs the SSL certificate, ... (microsoft.public.dotnet.security) RE: SIMple SSL question ?? ... I believe your book is instructing you to keep the private key secure. ... you use the certificate request wizard in IIS to install the cert after it's ... the certificate that's just been installed. ... If an attacker retrievs the SSL certificate, ... (microsoft.public.dotnet.security) Re: SSL certificate and IIS problems - HELP! ... when you created the certificate request using the IIS ... the response file MUST match the request as no-one else has even ... (microsoft.public.win2000.security) Re: IIS cert denied ... >2.Where is certificate services installed? ... All rights reserved. ... >>install it again.Then try creating certificate request. ... >>Microsoft Developer Support ... (microsoft.public.inetserver.iis.security)

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint