question

NazarenoVasquez-0149 avatar image
0 Votes"
NazarenoVasquez-0149 asked Reza-Ameri answered

User domain cannot use certificate for authentication

Hi good morning.
I configured certificate authentication for my vpn access.
In that case I generated certificates in the client machines and I have the followinf scenarios:
1) When the user logged has admin right he can connect to the vpn without problem.
2) If I install the certificate in a pc with local admin I can use the certificate for loggin without problem.
3) When a loggin as domain user I cannot login to the vpn and it shows a message "there is not a valid certificate"

When I try to install a certificate a prompt asking for right admins is launched.
Wich permission require a domain user to be able to use the certificate in vpn? or wich permission he required to install certificates without admin righs.
Best regards.

windows-10-security
· 3
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Try deploy the certificate in the domain controller.
When you are in AD, it will relays on the Domain Certificate.

0 Votes 0 ·

Hi,
Would you please tell how did you issue the vpn certificate?
Did you have a CA in your environment?
Is it a user certificate or a computer certificates?
Did the user have the read access for the certificates?

Best Regards,

0 Votes 0 ·

Hi,
 

If there are any updates, welcome to share here!
Please feel free to let us know if you have any questions further.

Best Regards,

0 Votes 0 ·

1 Answer

Reza-Ameri avatar image
0 Votes"
Reza-Ameri answered

Check the event viewer and see if there is any failure logged there and from there you may start troubleshooting.

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.