Re: understanding certificate autoenrollment
- From: "shoktai@xxxxxxxxx" <shoktai@xxxxxxxxx>
- Date: 21 Feb 2006 07:29:36 -0800
The system is running windows 2003 standard edition with SP1. This is a
domain controler.
I logged with a user account member of both Enterprise Admin &
Domain-Admin builtin groups.
<quote>FYI: The build in group
ENTERPRISE DOMAIN CONTROLLERS should have read and autoenroll, enroll
rights, that group covers all domain controllers within the
forest</quote>
Well but when i try to give read access to the Enterprise Domain
Controllers i receive a message error :
Unable to save permission changes to LDAP:
DomainName\DomainControlerAuthentication,CN=CertificateTemplate,CN=PublicKeyServices,CN=Services,CN=Configuration,DC=domain
A referral was returned from the server
So i am blocked at that point and i dont see what i can do as ther's
not even an article about that in the KB, i have tried to install and
reinstall the CA but no luck.
Thanks for your help.
.
- References:
- understanding certificate autoenrollment
- From: shoktai@xxxxxxxxx
- Re: understanding certificate autoenrollment
- From: chriss3 [MVP]
- understanding certificate autoenrollment
- Prev by Date: Re: Admin Account locked out every hour.
- Next by Date: testing all replication
- Previous by thread: Re: understanding certificate autoenrollment
- Next by thread: Re: ADAM provisioning proxy users
- Index(es):
Relevant Pages
|
