Hi,
I face this issue on both my production and test environment.
Both of them look like this:
On the root domain, we have a Enterprise Root CA on Windows 2008 R2 std Domain Controller.
On the production environment, the CA certificate is valid 8 years and on the test side, it is valid 20 years.
I need to generate Computer and Web Server certificates with a 5-year validity. So I copied the Computer and Web Server templates and set them to 5-year validity.
I then go on a client server and make a new certificate request. Either for the Computer or Web Server certificate request, instead of generating a 5 year certificate, it is a 2 year!!!
I tried also creating templates a 3-year, 10-year, etc... this is the same: it sees the template is for a certain length (3, 5, 10, etc) but when I clic view certificate: only 2 years.
I just tried with a Domain Controller certificate set to 10-year on my test environment (Root CA certificate if valid 20 years) and same issue: certificate issued is 2-year. I attached a screenshot.
I read on the TechNet that a CA can issue certificates that last as much as the CA certificate validity period. But in my case, my certificate templates are below this, so I don't think this is the reason of the issue.
Any help would be appreciate.
Thank you
PM
PM