RE: WCF SSL Cert

Tech-Archive recommends: Repair Windows Errors & Optimize Windows Performance

I have a Enterprise CA on a 2003 server that uses version 2 templates. If I
go back to a standalone CA then the prompts that you gave me all work and I
can get that cert to work with my wcf server(2). But I really need to use
certs from my enterprise CA. I will open a new item to address my issues
with the V2 tempates.
--
Scott Norberg


""Steven Cheng"" wrote:

Thanks for your reply Scott,

Seems there are some difference between the CA service. In my test, I
created the certificate from a internal coporation CA and it has "Server
Authentication Certificate". Also, based on my former experience, if I
setup a standalone CA server (on a win2k3 server), it will also provide
"Server Authentication Certificate" template. Therefore, I'm wondering
whether the CA service on your side has been particularly customized?

Sincerely,

Steven Cheng

Microsoft MSDN Online Support Lead


Delighting our customers is our #1 priority. We welcome your comments and
suggestions about how we can improve the support we provide to you. Please
feel free to let my manager know what you think of the level of service
provided. You can send feedback directly to my manager at:
msdnmg@xxxxxxxxxxxxxx

--------------------
References: <7E4B0432-9344-4CAB-8BB5-19910F949A89@xxxxxxxxxxxxx>
<OBBYw6CXJHA.2056@xxxxxxxxxxxxxxxxxxxxxx>
Subject: RE: WCF SSL Cert
Date: Fri, 12 Dec 2008 06:14:01 -0800


Steven,

I have tried virtually every option on the advanced page. On your example,
after your step #4, what Certificate template did you select? By default I
only had "Basic EFS" and "User". By going back to the CA and marking the
Web
Server template as Enroll I was able to get it to show up in the
Certificate
template drop, but is this the one that is needed? You indicate to use the
"Server Authentication Certification Certificate". I do not have that as a
selection. Going back to the CA there is no template with that name.

The certificate needs to have exportable keys, which you indicate. OK, the
main problem here is that I do not have the correct templates available. So
how do I get the Server Authentication template?

--
Scott Norberg


""Steven Cheng"" wrote:

Hi Scott,
.

Relevant Pages

  • Re: Problem setting the "Valid To" for EFS certificates
    ... You seem to be THE MAN on EFS since I ... credential roaming will work is that the server will request the private key ... unless an EFS certificate and private key exist in the user's profile on ... Basic EFS template and created a new template. ...
    (microsoft.public.windows.server.security)
  • Re: Certificates for DNS domains outside of Active Directory Domains
    ... >I haven't used Office Live Communications Server yet, but previously we>have> discussed creating the certificates for it using Certificate Server Web> forms. ... I have created a Certificate>> Template> on>> our Windows Server 2003 Enterprise Edition DC. ...
    (microsoft.public.windows.server.security)
  • Re: Certificates for DNS domains outside of Active Directory Domains
    ... I haven't used Office Live Communications Server yet, ... This is how to request a certificate with both Client and Server ... I have created a Certificate Template on> our Windows Server 2003 Enterprise Edition DC. ...
    (microsoft.public.windows.server.security)
  • Re: 802.1x EAP-TLS with Certificates and Access Points on Windows Server 2008 CA
    ... I have trouble to authenticate Access Points via EAP-TLS on a Windows ... 2008 Enterprise Server Domian. ... How can I create a certificate for the access point which is working ... name but I can't create certificates via my template (copied from user ...
    (microsoft.public.security)
  • Re: problem with RWW
    ... But they can access OWA directly. ... network configuration of the SBS 2k3 server. ... were created by using a template. ... can the new user access OWA through RWW? ...
    (microsoft.public.windows.server.sbs)