Scribd
Upload
7 views10 pages

49 User+&+Computer+Template

The document provides step-by-step instructions for creating User and Computer Certificate Templates using the Certification Authority Microsoft Management Console (MMC). It details the process of duplicating existing templates, configuring properties such as security permissions, subject name formats, and application policies. Finally, it explains how to enable the newly created templates in the Certification Authority.

Uploaded by

Williams
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
7 views10 pages

49 User+&+Computer+Template

The document provides step-by-step instructions for creating User and Computer Certificate Templates using the Certification Authority Microsoft Management Console (MMC). It details the process of duplicating existing templates, configuring properties such as security permissions, subject name formats, and application policies. Finally, it explains how to enable the newly created templates in the Certification Authority.

Uploaded by

Williams
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 10

Create User Certificate Template:

On CA, in Server Manager, click Tools, and then click Certification Authority. The Certification
Authority Microsoft Management Console (MMC) opens.

In the MMC, double-click the CA name, right-click Certificate Templates, and then click Manage.

Certificate Templates console opens. All of certificate templates are displayed in details pane.

1 | P a g e Created by Ahmad Ali E-Mail: [email protected] , Mobile: 056 430 3717


In the details pane, click the User template. On the Action menu, click Duplicate Template.
The Properties of New Template dialog box opens.

In Properties of New Template, on the General tab, in Display Name, type a new name for the
certificate template.

2 | P a g e Created by Ahmad Ali E-Mail: [email protected] , Mobile: 056 430 3717


Click Security tab. In Group or user names, click Domain Users. In Permissions for Domain Users,
under Allow, ensure that Enroll is selected, and then select Read and Autoenroll check boxes.

Click the Subject Name Tab. Ensure that Build from this Active Directory information is selected.
Also ensure that Subject name format has the value of Fully distinguished name. In Include this
information in alternate subject name, ensure that User principal name (UPN) is selected.

3 | P a g e Created by Ahmad Ali E-Mail: [email protected] , Mobile: 056 430 3717


Click the Extensions tab, Select the Application Policies extension, and click Edit. Add Server
Authentication application policy. Click OK, Again and close the Certificate Templates MMC.

4 | P a g e Created by Ahmad Ali E-Mail: [email protected] , Mobile: 056 430 3717


In Certification Authority MMC, click Certificate Templates. On Action menu, point to New, &
then click Certificate Template to Issue. The Enable Certificate Templates dialog box opens.

Click the name of the certificate template you just configured, and then click OK. Ensure the
certificate template is added to your Certification Authority.

5 | P a g e Created by Ahmad Ali E-Mail: [email protected] , Mobile: 056 430 3717


Create Computer Certificate Template:
On CA, in Server Manager, click Tools, and then click Certification Authority. The Certification
Authority Microsoft Management Console (MMC) opens.

In the MMC, double-click the CA name, right-click Certificate Templates, and then click Manage.

Certificate Templates console opens. All of certificate templates are displayed in details pane.

6 | P a g e Created by Ahmad Ali E-Mail: [email protected] , Mobile: 056 430 3717


In the details pane, click the Workstation Authentication template. On the Action menu, click
Duplicate Template. The Properties of New Template dialog box opens.

In Properties of New Template, on the General tab, in Display Name, type a new name for the
certificate template or keep the default name. In this case Workstation-Certificate

7 | P a g e Created by Ahmad Ali E-Mail: [email protected] , Mobile: 056 430 3717


Click the Security tab. In Group or user names, click Domain Computers. In Permissions for
Domain Computers, under Allow, ensure that Enroll is selected, and then select the Read and
Autoenroll check boxes.

8 | P a g e Created by Ahmad Ali E-Mail: [email protected] , Mobile: 056 430 3717


Click the Subject Name Tab. Ensure that Build from this Active Directory information is selected.
Also ensure that Subject name format has the value of Fully distinguished name. In Include this
information in alternate subject name, ensure that User principal name (UPN) is selected.
ensure that Include e-mail name in subject name is not selected.

Click OK, and close the Certificate Templates MMC.

9 | P a g e Created by Ahmad Ali E-Mail: [email protected] , Mobile: 056 430 3717


In Certification Authority MMC, click Certificate Templates. On the Action menu, point to New,
and then click Certificate Template to Issue. The Enable Certificate Templates dialog box opens.

Click the name of the certificate template you just configured, and then click OK.

10 | P a g e Created by Ahmad Ali E-Mail: [email protected] , Mobile: 056 430 3717

You might also like