none
Problem related to the integration between the a cisco ASA 5510 and an AD Microsoft CA Enterprise on a Windows2012. RRS feed

  • 問題

  • I'm trying to enroll the ASA5510 request in the CA and get a certificate for the ASA to use for SSL VPNs

    I created a new identity certificate from ASA5501 and then manual enroll the request to the CA by "Submit new request". It show this error:

    "The request contains no certificate template information. 0x80094801 (-2146875391)

    Denied by Policy Module 0x80094801, The request does not contain a certificate template extension or the CertificateTemplate request attribute"

    • 已移動 AChange 2013年8月28日 上午 02:26
    2013年8月28日 上午 02:20

解答

所有回覆

  • 您好, 已移動您的文章至正確版區. 微軟認證討論專區主要是提供給微軟相關證照考試討論的地方, 請您下次依據產品類型選擇正確的版區. 謝謝您!

    請記得對您有幫助的回覆標註為"解答". 以幫助其他尋找解答及參與社群討論的朋友們.
    Please remember to click “Mark as Answer” on the post that helps you. This can be beneficial to other community members reading the thread.

    2013年8月28日 上午 02:27
  • 2013年8月28日 上午 07:40
    版主
  • I'm trying to enroll the ASA5510 request in the CA and get a certificate for the ASA to use for SSL VPNs

    I created a new identity certificate from ASA5501 and then manual enroll the request to the CA by "Submit new request". It show this error:

    "The request contains no certificate template information. 0x80094801 (-2146875391)

    Denied by Policy Module 0x80094801, The request does not contain a certificate template extension or the CertificateTemplate request attribute"

    I already created a WebServer Template as follow.

    ASA5510 seem using (PKCS12 format eith Cretificate + Private Key). Any additional configure is necessary?


      Template[31]:
      TemplatePropCommonName = WebServer
      TemplatePropFriendlyName = Web Server
      TemplatePropSecurityDescriptor = O:S-1-5-21-2715177254-3623488434-915235577-519G:...

        Allow Enroll SS\Domain Admins
        Allow Enroll SS\Enterprise Admins
        Allow Enroll NT AUTHORITY\Authenticated Users
        Allow Full Control SS\Domain Admins
        Allow Full Control SS\Enterprise Admins
        Allow Read NT AUTHORITY\Authenticated Users

    2013年8月29日 上午 07:37