Re: Auto Enrollment
From: Laudon Williams [MSFT] (laudonw_at_online.microsoft.com)
Date: 10/15/03
- Next message: Laudon Williams [MSFT]: "Re: Public Key on Enterprise CA"
- Previous message: Molly B.: ""A required NT privilege is not held"; security update fails"
- In reply to: Dave Robinson: "Re: Auto Enrollment"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 15 Oct 2003 10:22:39 -0700
Dave, machines get the list of templates they can enroll for at boot time
and when group policy refreshes. Therefore, if you make configuration
changes, the machine that is supposed to enroll will not know about the
changes unless it restarts or gets policy. gpupdate /force forces the
machine to refresh policy.
Same for installation. The machine will not know that a CA has been added
until it updates.
Hope this helps.
-- This posting is provided "AS IS" with no warranties, and confers no rights. "Dave Robinson" <drobinson@endtoend.com> wrote in message news:de1cc84c.0310150519.31e9fee4@posting.google.com... > I've installed the CA on a DC now and things are working fine. I'd > like to move it again to a member server though. You suggested > running gpupdate /force, but I han't even made GP changes yet, I'm > trying to but I'm not able...Any ideas? > > "Laudon Williams [MSFT]" <laudonw@online.microsoft.com> wrote in message news:<OLdrBAnkDHA.372@TK2MSFTNGP11.phx.gbl>... > > Could be propagation delay. Try running gpupdate /force from the system you > > are using to set group policy. > > > > -- > > This posting is provided "AS IS" with no warranties, and confers no rights. > > > > > > "Dave Robinson" <drobinson@endtoend.com> wrote in message > > news:de1cc84c.0310140816.73d3ed14@posting.google.com... > > > Hi All, > > > > > > I've got a strange problem happening with certificates. I'm trying to > > > get LDAP SSL working. I've installed certificate services on a member > > > server and configured it as an Enterprise Root. When I try to > > > configure the Group Policy setting for Automatic Certificate Request > > > Settings and I choose the Domain Controller template, I get the error: > > > > > > There is no Certification Authority available for the selected > > > Certificate Template > > > > > > I see the CA listed in Sites and Services and I also see the CA listed > > > in the Cert Publishers security group. The CA has Domain Controllers > > > listed under Policy Settings... > > > > > > Any ideas? What do I need to do to get this group policy setting to > > > recognize the CA?
- Next message: Laudon Williams [MSFT]: "Re: Public Key on Enterprise CA"
- Previous message: Molly B.: ""A required NT privilege is not held"; security update fails"
- In reply to: Dave Robinson: "Re: Auto Enrollment"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
