|
Posted by Brian Komar [MVP] on January 16, 2007, 9:18 pm
Please log in for more thread options
Nelson@discussions.microsoft.com says...
> Hi, im trying to enable the access to users to require a certificate in my
> enterprise authority. I want that they log as anonymous users. When I enable
> the anonymous option access the users cannot login to request the page, in
> fact the page receive an error indicating that no certificate templates are
> availables with the logon policies that I'm (the user) is using. So, does
> anybody if its possible to change the settings to enable anonymous access to
> obtain the certificates? What I'm doing is trying to enable users to log in
> my wireless using certificates.So, to receive the certificates they dont
> belong to any domain. Any clue? I'll appreciatte your help. I've read the
> last two days in microsoft and google what it says but I couldn't find any
> that helps me.
>
> Thanks,
>
>
Cannot be done with an enterprise CA. Enterprise CA's are all based on identity
which
requires the user to authenticate with the server.
Use a standalone CA in your hierarchy and have the user's provide their subject
and any
necessary OIDs. Ultimately, no access is provided because anonymous users would
not have
access to any certificate templates issued by the enterprise CA.
Brian
| 
XML Sitemap