our IT guys wont setup auto enrollment in 2 of our domains. Our 3rd domain has auto enrollment. I need machine certs from our 3rd domain on the machines in the other 2 domains. One of these is not trusted.
I have some 300+ certs to install
I am able to create all the certs quickly with exportable key for all the machines. I am not able to install them all on the machines quickly.
I have tried using PSExec -u domain\username -p password \\machine certutil password -importpfx certfile
but its unreliable and most of the time i get an error that the login failed on the machine even though I am using a domain admin.
Is there another way to automate pushing out all these certs?
Thanks Lance