Skip to end of metadata
Go to start of metadata
You are viewing an old version of this page. View the current version.
Compare with Current
View Page History
« Previous
Version 2
Next »
This information is written in English only
The certificate issued for SmartCard Logon.
| Explanations | Screenshots |
|---|
General: - Validity = 3 years
- Renewal Period = 6 weeks
- Published in Active Directory
We can see certificate issued under user account properties in AD | |
Compatability:
| |
Request Handling: - Purpose = Signature and SmartCard Logon
- Prompt the User during enrollment = Set
| 
|
|
|
| Subject Name: Name is obtained from Active Directory based on the Fully distinguished name and the user's UPN |
|
| Issuance Requirements: - This number of authorized signatures = 1
- Policy = Application Policy and Certificate Request Agent
- Reenrollment = Same criteria as for enrollment
|
|
Suspended Templates: |
|
Extensions: - Application Policy = Client Authentication, SmartCard Logon
|
|
Extensions: - Certificate Template Information
- Issuance Policies = Default setting (Certificate policies are also known as issuance policies)
|
|
Extensions: - Key Usage
- Digital Signature
- Critical extension
|
|
| Security:
These settings determine the privileges for the Certificate for read, modify and enroll of certificate. Only the DL_CA_ADM, the DL_LRA_ADM and the DL_CA_LRA_Operators groups should this
certificate via auto Enrollment. - Authenticated Users = Read
- DL_CA_Admins = Read, Write, Enroll
- DL_CA_LRA_Admins = Read, Write, Enroll
- DL_CA_LRA_Operators = Read, Enroll
- Domain Admins = Read, Write
- Enterprise Admins = Read, Write
|
|
Content
The selected root page could not be found.
Unable to render {include} The included page could not be found.
Unable to render {include} The included page could not be found.
Unable to render {include} The included page could not be found.
Unable to render {include} The included page could not be found.
Unable to render {include} The included page could not be found.
