Open Group Policy Management and edit the Default Domain Policy to apply the Certificate Template to all servers in the AD Domain
Open Group Policy Management and edit the Default Domain Policy to apply the Certificate Template to all servers in the AD Domain
Hello @cruise-6690,
Thank you for posting here.
If you want to apply the certificate template to all servers in the AD domain.
The configuration way is set permissions on certificate template.
1.On the specific certificate template, make sure:
Authenticated Users: Read permission
Domain Computers (Domain Computers include all servers in the domain): Read and Enroll permissions
Or
Authenticated Users: Read permission
Sepcific machine group (create a AD group and put all servers in this group): Read and Enroll permissions

2.Issue this certificate template.
3.When request certificates, all servers will see this certificate template.
Hope the information above is helpful.
Should you have any question or concern, please feel free to let us know.
Best Regards,
Daisy Zhou
============================================
If the Answer is helpful, please click "Accept Answer" and upvote it.
5 people are following this question.