Trying to get Smart Card Authentication setup.
Using a dedicated AD account called eagent, verified security is read and enroll for certificate templates.
- Installed CA on Windows 2008 R2 - Domain Controller
- Issued Certificate Template: Enrollment Agent
- Managed Templates, Duplicate Smartcard Logon, picked Server 2003 Enterprise, General tab: validity 5 years, and changed display name; Request Handling: Signature and smartcard logon; Issuance Requirements: 1 authorized signature, Application Policy type required in signature, Application policy-Certificate Request Agent.
- Issued Certificate Template: My Smartcard Logon
- From enrollment station (eagent logged on): Installed Enrollment Agent is Personal>Certificates store. Status: Succeeded
- From enrollment station (eagent logged on): Personal>Certificates, All Tasks, Advanced Operations, Enroll on Behalf of..., click Next twice, when I Browse for Select Enrollment Agent Certificate I get:
No certificate available
No certificatates meet the application...
Click Ok to continue
I have been back thru all settings all day, I am completely stumped.
Michael Maxwell