Network World
Saturday, November 22, 2008
DNSstuff.com
Get information about your IP
IP Information
50+ On-demand DNS and network tools

Hidden Microsoft

Microsoft Subnet
NetworkWorld.com > Community > Hidden Microsoft

Navigation

Windows Server 2008 Certificate Services web enrollment pages does not support V3 templates

By tkopczynski on Tue, 10/07/2008 - 6:05am.

Here is a little tidbit that I've been meaning to post for some time now (sorry the move kinda had me side tracked).  Anyhow, I was working with MS support on a Windows Server 2003 certificate template issue.  To show the escalation engineer that the issue was reproducible, I replicated (or at least thought I replicated the issue just before leaving for Japan) using a 2008 based CA within my home lab.

In short, the issue that was occurring was only with newly created custom certificate templates.  After creating the template and assigning to a CA, the web enrollment pages were in turn never/not showing the certificate template.  However, after showing this to the engineer, he stated this was actually by design in Windows Server 2008.

Say what!

Yeah, yeah... this was basically not documented (kinda) until very recently.  In short, the 2008 version of the web enrollment pages are still using the old version of the scrdenrl.dll (Smart Card Enrollment control).  Considering that this control is being phased out, it was not updated to support V3 templates.

So... for those of you trying to make a V3 template work with the 2008 web enrollment pages... stop!  :>)

Permalink
Tags:

Post new comment

The content of this field is kept private and will not be shown publicly.
  • Allowed HTML tags: <a> <em> <strong> <i> <b> <cite> <code> <ul> <ol> <li> <dl> <dt> <dd> <blockquote> <br /> <br> <p>
  • Lines and paragraphs break automatically.
  • You can use BBCode tags in the text.
  • Web page addresses and e-mail addresses turn into links automatically.

More information about formatting options

CAPTCHA
This question is for testing whether you are a human visitor and to prevent automated spam submissions.

About Tyson Kopczynski

With more than nine years of experience in IT, Tyson Kopczynski has become a specialist in Active Directory, Group Policy, Windows scripting, Windows Rights Management Services, PKI, and IT security practices. Tyson is the author of the new book Windows PowerShell Unleashed (read a sample chapter and learn about the drawing for a free copy here). Tyson has been a contributing author for such books as Microsoft Internet Security and Acceleration (ISA) Server 2004 Unleashed and Microsoft Windows Server 2003 Unleashed (R2 Edition). He has also written detailed technical papers and guides covering various technologies. As a consultant at Convergent Computing, Tyson has worked with next generation Microsoft technologies since their inception and played a key role in expanding scripting and development practices. Tyson also holds the SANS Security Essentials Certification, Microsoft Certified Systems Engineer Security certification, CompTIA Security+ certification and SANS Certified Incident Handler certification.

RSS feed Subscrib to Tyson Kopczynski's Hidden Microsoft feed.

Blog archive.RSS feed Microsoft news RSS feed

The opinions expressed in this Weblog are those of the writer and may not represent the opinions of Network World.

Advertisement: