i have a linux box that im trying to register a proper ssl key so its trusted in my ad environment.
so my CA is setup and i can enroll certificates from windows boxes on the domain but having issues with linux.
here is what i do:
1. http://ca/certsrv/
2. click on request a certificate
3. advanced certificate request
4. Submit a certificate request by using a base-64-encoded CMC or PKCS #10 file, or submit a renewal request by using a base-64-encoded PKCS #7 file.
5. past my request into the first text box (base 64 encoded certificate request)
6. for certificate tempalte i tried basic efs and user
i am able to download the answer file and import it properly but cant get the website to come up. i get this in firefox:
Certificate type not approved for application.
(Error code: sec_error_inadequate_cert_type)
in IE i cant even get the website to go. i just have an option to close the page because the cert is invalid.
from using openssl on the linux box it seems that i am not getting a server cert. do i need to add another template? if so how?
any help would be greatly appreciated, thank you
i am referencing this: