000011787 - Microsoft certificate templates not seen for AEP

Document created by RSA Customer Support Employee on Jun 14, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000011787
Applies ToRSA Certificate Manager RCM 6.8
RSA Certificate Manager (RCM)
Auto Enrollment Proxy (AEP)
IssueMicrosoft certificate templates not seen for AEP
When using the Certificate Snap-In to enroll for a user certificate, the AEP CA and associated templates are not visible so users cannot enroll for a certificate. However, the Certificate Snap-In for Computer certificates shows the AEP CA correctly.
CauseAny computer which is a member of the domain will always download CA information from Active Directory. However, if you log onto a domain computer using a local account on that computer, your user account will not download CA information from Active Directory (since your account is not a valid AD user account). Hence, you will see the domain CA listed using the local computer Certificate snap in but would be unable to see the domain CA using the user Certificate snap in.
ResolutionThe currently logged in user is not a Domain user. Log off and log back onto the system using valid Domain credentials (for the domain that the AEP CA belongs to).
Legacy Article IDa57054

Attachments

    Outcomes