Hello @nmpuk ,
Thank you for your update.
If I launch mmc in the user context, the wizard shows no certificate templates available as below;
A: Because it is computer certificate template, only administrator under the local computer context can see it.
NOTE: I do NOT get an option to 'Supply in the request'. Where are you see expecting to see this? See below
A:On the certificate template.
I mean if you want to see "Web Server" certificate template through certsrv web page (http://localhost/certsrv or https://localhost/certsrv), you need to select the option 'Supply in the request'.
But you can see the web server cert template via MMC no matter you select the option 'Supply in the request' or not.
403 error seems like permission issue. Do you have the same 403 issue on any machine?
Here is a similar case for CSR as base64 encoded cert request.
I have replied before.
Unable to sign CSR with Microsoft Windows CA
https://learn.microsoft.com/en-us/answers/questions/89382/unable-to-sign-csr-with-microsoft-windows-ca.html
Best Regards,
Daisy Zhou