I have a GPO to enable the PKI certificate autoenrollment for both computers and users.
After I have the GPO applied, most computers are working fine. However some computer won't auto enroll the cert.
So I used gpresult to generate the report. Under the computer section, the auto enrollment GPO did show among the list of applied GPO. However when check the PKI setting node, the winning GPO is shown as [Default Settings] and the value is not matching with GPO.
I tried gpupdate /force and also reboot the computer but symptom is the same.
Any suggestions?