Re: Publish Certificates in AD - parent\child domain
- From: "Steven L Umbach" <n9rou@xxxxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Tue, 4 Apr 2006 23:10:29 -0500
I don't know for sure if this will help but make sure you read the whole KB
as there is a different procedure under Windows 2000 domains and Windows
Server 2003 domains that have been upgraded from Windows 2000 in which case
the Cert Publishers group is a domain global group instead of domain local
group. --- Steve
"Barna8us" <notachance_2@xxxxxxxxxxx> wrote in message
news:1144188816.517684.93890@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
I am trying to work through this MS article on how to allow child
domain users to get certificates and have them published in AD from a
parent domain: http://support.microsoft.com/?kbid=281271
But am stuck on line 5a: "Click Next, click Add, and then add the Cert
Publishers group from the parent domain."
The Cert Publishers group is a built-in security group of the parent
domain. I cannot add it from the child domain - cannot be found in the
delegation wizard from the child domain. I thought this was the way
it was supposed to be anyway - that built-in groups from a parent
domain were not available to assign permissions to in the child domain.
But, that is the way this article explains how to do it....
Any insight is appreciated.
Thanks!
B
.
- References:
- Publish Certificates in AD - parent\child domain
- From: Barna8us
- Publish Certificates in AD - parent\child domain
- Prev by Date: Re: Firewall/security center settings
- Next by Date: Re: responses on port 41523
- Previous by thread: Publish Certificates in AD - parent\child domain
- Next by thread: change file owner?
- Index(es):
Relevant Pages
|
