locked
SBS 2011: Network Device Enrollment Service missing from Active Directory Certificate Services RRS feed

Answers

  • Ok, thanks Cliff. But then a message to Microsoft: It really sucks that you remove a feature from a product line without excplicitly pointing that out. Yes, it's only available on Windows 2008 R2 Enterprice, and SBS 2011 is based on 2008 R2 Standard. So how do I know that this feature has been removed which was present in previous versions ? I've searched your entire web for detailed SBS 2011 product info but just found some 10000ft marketing stuff. No exact description.

    So SBS 2011 customers shouldn't be able to use other VPN technologies other than what Microsoft provides without functionality penalty ? This REALLY sucks !!!


    MWebjorn


    • Edited by MWebjorn Wednesday, November 28, 2012 12:20 PM
    • Marked as answer by MWebjorn Tuesday, April 9, 2013 3:52 PM
    Wednesday, November 28, 2012 5:29 AM

All replies

  • Hi:

    Apparently it is not available.  Can you tell us what you are wanting to do by installing this service?


    Larry Struckmeyer[SBS-MVP]

    Tuesday, November 27, 2012 2:32 AM
  • In the 2008 R2 product line, NDES is a feature of Enterprise and Datacenter editions. Standard and below do not have it, which includes SBS and Foundation. So this is not unique to SBS.

    More info here:

    http://download.microsoft.com/download/F/C/6/FC6006B5-866E-42C1-88F8-9AC4B8BC610D/WS%20Brand%20Pages%20-%20Editions%20Comparison%20Guide.pdf

    Tuesday, November 27, 2012 4:11 AM
  • I need it for my Cisco ASA5505 which runs L2TP VPN, and which needs SCEP/NDES to manage certificates. Is there some way to add this to SBS 2011 Standard ?


    MWebjorn

    Tuesday, November 27, 2012 10:46 AM
  • No. As I linked to, it is *ONLY* a feature available in Windows 2008 R2 Enterprise. If you need this, you must add an OS with the appropriate feature and enable the role on THAT OS. That means 2008 R2 Enterprise, Datacenter, or 2012 Standard/Datacenter. I also feel it necessary to stress that this is NOT a restriction of SBS. Even someone who bought a stock-standard 2008 R2 Standard OS license would be unable to add/use this role's feature.
    • Edited by Cliff Galiher Wednesday, November 28, 2012 12:49 AM
    • Proposed as answer by Oscar Soto CL Tuesday, April 9, 2013 12:30 PM
    Wednesday, November 28, 2012 12:48 AM
  • Ok, thanks Cliff. But then a message to Microsoft: It really sucks that you remove a feature from a product line without excplicitly pointing that out. Yes, it's only available on Windows 2008 R2 Enterprice, and SBS 2011 is based on 2008 R2 Standard. So how do I know that this feature has been removed which was present in previous versions ? I've searched your entire web for detailed SBS 2011 product info but just found some 10000ft marketing stuff. No exact description.

    So SBS 2011 customers shouldn't be able to use other VPN technologies other than what Microsoft provides without functionality penalty ? This REALLY sucks !!!


    MWebjorn


    • Edited by MWebjorn Wednesday, November 28, 2012 12:20 PM
    • Marked as answer by MWebjorn Tuesday, April 9, 2013 3:52 PM
    Wednesday, November 28, 2012 5:29 AM