question

cruise-6690 avatar image
0 Votes"
cruise-6690 asked DaisyZhou-MSFT answered

Apply the certificate template to all servers in the AD domain?

Open Group Policy Management and edit the Default Domain Policy to apply the Certificate Template to all servers in the AD Domain


windows-server-2016
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

1 Answer

DaisyZhou-MSFT avatar image
0 Votes"
DaisyZhou-MSFT answered

Hello @cruise-6690,

Thank you for posting here.

If you want to apply the certificate template to all servers in the AD domain.

The configuration way is set permissions on certificate template.

1.On the specific certificate template, make sure:

Authenticated Users: Read permission
Domain Computers (Domain Computers include all servers in the domain): Read and Enroll permissions

Or

Authenticated Users: Read permission
Sepcific machine group (create a AD group and put all servers in this group): Read and Enroll permissions

91293-gro.png

2.Issue this certificate template.
91295-gro1.png

3.When request certificates, all servers will see this certificate template.


Hope the information above is helpful.

Should you have any question or concern, please feel free to let us know.


Best Regards,
Daisy Zhou


============================================
If the Answer is helpful, please click "Accept Answer" and upvote it.



gro.png (36.7 KiB)
gro1.png (18.5 KiB)
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.