I have a client certificate template which is configured with auto enrollment for "Domain Computers". Laptops are configured with auto-enroll group policy and getting this client cert.
Now, I have a requirement to enable auto-enrollment for all servers. My question is, if I enable auto enrollment GPO for servers and configure "domain computers" with auto enroll permission for server cert template, will this new server cert will get installed on laptops too and vice versa ?
Any thoughts how to overcome this challenge ?