CAUTION
This process is not required and is not possible with a stand-alone certificate authority
because the Client Authentication and Server Authentication certificates are already
available by default.
252 CHAPTER 9 Enabling Client Remote Access with ISA Server 2006 VPNs
1. From a member server in the domain that has been configured with the enterprise
certificate authority in the previous steps (not the ISA server), click Start, Run, type
in CertTmpl.msc, and press OK.
2. Right-click Computer from the list of available certificates and select Duplicate
Template from the context menu.
3. In the properties windows, enter a descriptive name in the Template Display Name
field.
4. On the Request Handling tab, enable the Allow Private Key to Be Exported check
box, as shown in Figure 9.22.
5. On the Subject Name tab, select Supply in the Request.
6. On the Security tab, review the security. By default, only administrators can enroll
new systems; this responsibility can be delegated if required.
7. Click the OK button to save the changes and close the window.
CAUTION
The previous steps enable machine certificates to be issued through the web enrollment
page, using the default settings.
Pages:
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445