 This information is written in English only
The certificate issued for SmartCard Logon.  Image Removed Image Added
| Explanations | Screenshots |
|---|
General: - Validity = 3 years
- Renewal Period = 6 weeks
- Published in Active Directory
We can see certificate issued under user account properties in AD | | Image Removed Image Added
| Compatability:
|  Image Added
| Request Handling: - Purpose = Signature and SmartCard LogonKey Size =1024
- Prompt the User during enrollment = set
CSP = Any – the organization can choose its own CSP or Buypass Access (Net iD CSP) | Image Removed | Image Removed |
|  Image Added
|
|
| | Subject Name: Name is obtained from Active Directory based on the Fully distinguished name and the user's UPN |
| | Image Removed Issuance Requirements: - This number of authorized signatures = 1
- Policy = Application Policy and Certificate Request Agent
- Reenrollment = Same criteria as for enrollment
| Image Removed |
| Suspended Templates: | Image Removed |
| Extensions: - Application Policy = Client Authentication, SmartCard Logon
| Image Removed |
| Extensions: - Certificate Template Information
- Issuance Policies = Default setting (Certificate policies are also known as issuance policies)
| Image Removed |
| Extensions: - Key Usage
- Digital Signature
- Critical extension
|
| | Image Removed Security:
These settings determine the privileges for the Certificate for read, modify and enroll of certificate. Only the DL_CA_ADM, the DL_LRA_ADM and the DL_CA_LRA_Operators groups should this
certificate via auto Enrollment. - Authenticated Users = Read
- DL_CA_Admins = Read, Write, Enroll
- DL_CA_LRA_Admins = Read, Write, Enroll
- DL_CA_LRA_Operators = Read, Enroll
- Domain Admins = Read, Write
- Enterprise Admins = Read, Write
Image Removed |
Next >>
|