SCCM 2012 : Server Authentication Certificate Templates

 

 

Creating Certificates for Workgroup and Internet client certificate templates and the process of implementing these kinds of clients, so I am going to do a multi-parter.

  1. SCCM 2012 : Server Authentication Certificate Templates 
  2. SCCM 2012 : Client Authentication Certificate Templates
  3. SCCM 2012 : Deploying Server Authentication Certificate
  4. SCCM 2012 : Configure your Clients for internet and workgroup clients
  5. SCCM 2012 : Internet and Workgroup Clients​

 

In this section I will go through the process of creating the certificate templates for server authentication certificates and client authentication certificates, then I will move on to deploying the clients.

Server Authentication Certificate Template

1. Create a Security Group (Name it SCCM_2012_Member_servers or something like that) in AD and add all of your SCCM 2012 member servers which have IIS and web certificates

2. You need to open up your Certificate Authority Management Console from your CA computer or a computer with RSAT installed.


3. In the CA MMC right click on Certificate Templates and then click on Manage.

4. Find the "Web Server" Template, right click on it and Select Duplicate Template.

 

5. Now we need to set the proper settings on the Certificate Template your created by duplicating the "Web Server" Template:

a) On the compatibility tab, select: Windows Server 2003 for the Certification Authority.

b) On the General tab, Give the new template a Template Display Name.

c) On the Subject Name tab, select "Build from Active Directory information", Select the "Subject name format "Common name", and un check all the boxes under "Include this information in alternate subject name:".

 

d) on the Request Handling tab, check "Allow private key to be exported".

e) on the Security tab, Add the security group you created in step #1. Give it "Read" and "Enroll" permissions. you ma also want to REMOVE "Enroll" permissions from the other user users and groups.

Click OK. and Close the Certificate Templates Console.

6. Now back in the CA Console we are going to need to enable the new Certificate Template you created:

a) right click "Certificate Templates", then select "New" then "Certificate Template to Issue"

b) Select the Certificate Template you created and click OK.

Click OK. Now you have finished creating your Server Authentication Certificate Template

This website and its content is copyright of ITHierarchy Inc - © ITHierarchy Inc 2013-2015. All rights reserved.

Any redistribution or reproduction of part or all of the contents in any form is prohibited other than the following:

  • you may print or download to a local hard disk extracts for your personal and non-commercial use only
  • you may copy the content to individual third parties for their personal use, but only if you acknowledge the website as the source of the material

You may not, except with our express written permission, distribute or commercially exploit the content. Nor may you transmit it or store it in any other website or other form of electronic retrieval system.

 

;