Hi Support,
We have a root CA and intermedia CA
In root CA, root certificate valid period is 20 years, generate certificate valid period is 1 year
In intermedia CA, generate certificate valid period is 2 years
I created a certificate template and configure the valid period is 5 years. When i generate certificate by this templates, it show error:
Unable to submit the CSR request to certificate authority.-Error Constructing or Publishing Certificate
The certificate validity period will be shorter than the xxxxx Certificate Template specifies, because the template validity period is longer than the maximum certificate validity period allowed by the CA.
Consider renewing the CA certificate, reducing the template validity period, or increasing the registry validity period.
Then I try to modify the value to 10 years by command and registry. But the problem still exist

Any idea?
Thank and Best Regards
Chong