Latest posts by Wolfgang Sommergut (see all)
- Office 2019, Office 365, and Microsoft 365 in comparison: Products included, editions, licensing, and support - Mon, Mar 30 2020
- Scan, download and install Windows Updates with PowerShell - Mon, Mar 23 2020
- WinPE for Windows 10: Create an ISO or a USB stick - Mon, Mar 16 2020
The first issue you will probably encounter when using a custom template is that the template does not appear in the Active Directory registration policy at all. If you try to circumvent this problem by selecting the Show all templates checkbox, the new template will be displayed, but with a status of Unavailable.
The description you will find there reads:
The requested certificate template is not supported by this CA.
A valid certification authority (CA) configured to issue certificates based on this template cannot be located, or the CA does not support this operation, or the CA is not trusted.
To solve this problem, open certsrv.msc. In the left pane, right-click Certificate Templates and select New > Certificate Template to Issue.
The list that appears should contain the new template. Select the new template and click OK to confirm.
The next time you attempt to request a certificate in certmgr.msc, the template should be visible and available.