And you will!
I will try asap to clone this experience in my homelab. Thatāll take a bit though
And you will!
I will try asap to clone this experience in my homelab. Thatāll take a bit though
Iām working with @jan to get my pull request committed into the main documentation branch.
For now, you can find the notes I wrote about the whole certificates hullaballoo over here ->
Huzzaaah!!!
A colleague managed to get the template configured properly. This required restarting the PKI a couple of times as well.
I could then proceed to submit a CSR created on the linux-commandline via webinterface.
And now it works. With the configuration being identical to what I did before.
Damn you āhistorically developed structuresāā¦
Why didnāt I think of simply smacking the PKI on the back of its head? Sheeeshā¦
I am deeply sorry for keeping you occupied that long when I should have switched it off and on again.
On the plus side and thanks to you Tess, there is now a very comprehensive documentation on how to do the tls-setup when there is a Windows PKI involved.
This will surely be helpful to many an admin having trouble to get things up and running in the future!
Restarting is not required. However, it takes a while for the new template to percolate through AD and its synchronizations. But no, a restart of ADCS is not needed
And no worries! Iām glad that I could help! I love PKI and certs; honestly, I think itās a fun and challenging part of the infrastructure to work with! Give me budget to build a cool env and throw in a few HSMs for good measure
This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.