Requesting a certificate for a Cisco PIX
From: Martin Jakob (Martin.Jakob_at_nospamMicronas.com)
Date: 10/22/03
- Next message: Kim Stahnke: "w32time.dll"
- Previous message: Gbinnig: "domain/username in security dialog box can display non-existent domain"
- Next in thread: David Cross [MS]: "Re: Requesting a certificate for a Cisco PIX"
- Reply: David Cross [MS]: "Re: Requesting a certificate for a Cisco PIX"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 22 Oct 2003 16:28:44 +0200
Hello,
I am trying to request a certifcate for a Pix Firewall via SCEP. The CA is a
Windows 2000 Enterprise Root CA. So far i didn't have success. In the
Eventlog of the CA is the following entry:
"Certificate Services denied request 8315 because Access is denied.
0x80070005 (WIN32: 5). The request was for CN=pix+
OID.1.2.840.113549.1.9.2=pix. Additional information: Denied by Policy
Module".
In Technet i found following passage:
"Because enterprise certification authorities use Active Directory to
determine the identity of the requester and to determine whether the
requester has the security permissions to request a certificate of the type
that they specify, the CA automatically determines whether a requester is
authorized to receive the certificate requested."
So, is it possible to enroll this certificate to the Pix, by adding the
Device to the Active Directory? Any hints/tips are welcome.
-- Martin
- Next message: Kim Stahnke: "w32time.dll"
- Previous message: Gbinnig: "domain/username in security dialog box can display non-existent domain"
- Next in thread: David Cross [MS]: "Re: Requesting a certificate for a Cisco PIX"
- Reply: David Cross [MS]: "Re: Requesting a certificate for a Cisco PIX"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
