Hello everyone,
I’m having issues with workgroup computers, not domain systems when I request a certificate.
It’s extremely weird. It has something to do with Windows 7 and Windows 2008 machines. In 2003 server I can request a certificate manually with certutil and it see the certificate template. I copy over the exact command on windows 7 and it can’t see the certificate template.
I have the following configuration:
- CA Enterprise
- I have created the SCCM Client Certificate
- I have created the SCCM Web Server Certificate
- I have created the SCCM Distribution Point Certificate
- GPO is configured
- SCCM 2012 R2 CU2 configured to do HTTP and HTTPS
- Installed SCCM Client Certificate
- Installed SCCM Web Server Certificate
- Installed Distribution Point Certificate
- Deployed to a domain computer good on PKI
Workgroup Computers:
I’m having issues with deploying certificates
- Windows 7 – (ERROR) not successful
- Windows Server 2008 R2 – (ERROR) not successful
- Windows Server 2003 - successful
- Windows XP – successful
How I’m getting the certs for the clients is by utilizing the following scripts from this URL.
http://www.ithierarchy.com/ITH/node/48
I did find a couple of errors in the code, but if it’s working on my Server 2003, then it should work on the others. Windows 7 and Windows 2008 R2 seem to have the same issue. The error I’m getting is the following:
Command line requesting the cert ---- CertReq –new –f testcomputer.home.pvt.inf c:\client\testcomputer.home.pvt.req
Error --- Template not found.
SCCMClientCertificate (this is my template)
- CA Enterprise
↧
PKI Client Certificate Template not viewable by Windows 7 and Server 2008 workgroup machines.
↧