question

PatChamberlain-8992 avatar image
0 Votes"
PatChamberlain-8992 asked FanFan-MSFT commented

Enrollment Agent - no cetificate meet the application requirements

Hello,

Our Certificate server fell out of validity but i was able to renew it and re issue the Enrollment agent but now when i try to issue new badges using "enroll on behalf of" i get the error no certs meet the application requirements. This is new and i have checked everything as far as i can see everything matches up.

windows-server
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

FanFan-MSFT avatar image
0 Votes"
FanFan-MSFT answered PatChamberlain-8992 commented

Hi,
Before going further, would you please tell more information about your PKI environment?
You have confirmed that the CA are working well, right?
If it is a enterprise CA, you can check the status by pkiview.msc. If possible, you can share a screenshot here!
Then you can refer to the following steps to request a cert using "enroll on behalf of":
https://docs.microsoft.com/en-us/answers/questions/369669/no-certificates-meet-the-application-criteria.html

Best Regards,

· 1
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Please see attached screenshots.

0 Votes 0 ·
PatChamberlain-8992 avatar image
0 Votes"
PatChamberlain-8992 answered

107067-image.png


107049-image.png


107050-image.png



image.png (494.2 KiB)
image.png (452.1 KiB)
image.png (141.9 KiB)
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

PatChamberlain-8992 avatar image
0 Votes"
PatChamberlain-8992 answered FanFan-MSFT commented

Hello, Yes i have done the steps listed above. I can't seem to see what i am missing i followed the steps exactly and this was working previously before the expiration of the Cert.

· 7
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Hi,
Would you please talk more about "Our Certificate server fell out of validity but i was able to renew it"
Do you have only one enterprise Root CA server?
Best Regards,

0 Votes 0 ·

Correct we have one CA Server.

0 Votes 0 ·

Our CA server Root Cert expired and i Renewed it and then i also Renewed the enrollment user cert but now when i go to re enroll cards or enroll new cards i do not see the enrollment user i have created as a signer.

0 Votes 0 ·
Show more comments