![]() Type gpmc.msc in the text box, and click OK.Launch the Group Policy Management console.To create a group policy for auto enrollment Step 4 - Create group policy for auto enrollment Close the Certificate Templates Console.Select and remove all other application policies except the Client Authentication application policy.Select the Application Policies extension, and click Edit.Įdit Application Policies Extension dialog box appears on the page. ![]() Select the security group and under Permissions dialog box, select the Read, Enroll, and Autoenroll check boxes.In the Group or user name, click Add and type the name or browse to select the security group.Click the Cryptography tab, enter Minimum key size as 4096.Select Enroll Subject without requiring any user input option. ![]() Important: This ensures that the downloaded user certificates are useless by preventing a possible compromise of the server's private key. Ensure Allow private key to be exported check box is clear.Select Do not Automatically reenroll if duplicate certificate exists in Active Directory check box.Select Publish certificate in Active Directory check box. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |