Hello Initial position:
-Root- and Subdomain W2003, Clients XP Prof.
-W2003 PKI with a root (standalone, not ad-integrated) and an
enterprise subca (ad-integrated).
-Enrolling smartcards on behalf of idNexus
-Certificate template (encryption) is configured to publish
certificates in AD
Problem:
The smartcards with the certificates are enrolled perfectly but on the
user objects in AD there are no encryption certificates published. They
should because we need them on the user object for an encryption
software getting them there in AD.
I tried also with softcertificates (one encryption, one client
authentication) which I configured with the same checkbox on the
template "publish certificate in ad". Then I autoenrolled to some
users. But also here no certs are published onto the user obejcts.
Re: W2003 PKI: Publish certificates onto user objects in active directory ... -Root- and Subdomain W2003, Clients XP Prof. -W2003 PKI with a root and an enterprise subca. ... The smartcards with the certificates are enrolled perfectly but on the user objects in AD there are no encryption certificates published.... (microsoft.public.windows.server.security)
Re: RECOVERING MY ENCRYPTED HD FROM DEAD WINDOWS 2000 ...certificates were probably only stored on the reinstalled ...file encryption key - different for each file, ...document formats have some standard bytes in - once matched ... The install wouldn't ... (microsoft.public.windowsxp.security_admin)
Re: Sending signed and encrypted email. ... The user may have 1 or more certificates,... via an AD lookup, you would want their encryption certificate, not their ... Co-author of "The .NET Developer's Guide to Directory Services Programming"... I am new to framework 2.0 so unsure about the capabilities of the ... (microsoft.public.dotnet.security)
Re: decrypting files from XP - tough question ...EFS uses a hybrid asymmetric/symmetric encryption scheme.... It is to those keys which EFS encrypted the ... That session key can only be retrieved by those same certificates.... (microsoft.public.security)
Re: file security ... When enabling EFS on a computer, ... Subject: Again with the Encryption!...>Copying saved certificates will not work--you have to export and import ... >the usual enquirer might find by looking under a search on Encryption. ... (microsoft.public.windowsxp.security_admin)
