You have an enterprise certification authority (CA) named CA1.
You have a certificate template named UserAutoEnroll that is based on the User certificate template. Domain
users are configured to autoenroll for UserAutoEnroll.
A user named User1 has an email address defined in Active Directory. A user named User2 does not have an
email address defined in Active Directory.
You discover that User1 was issued a certificate based on UserAutoEnroll template automatically.
A request by user2 for a certificate based on the UserAutoEnroll template fails.
You need to ensure that all users can autoenroll for certificated based on the UserAutoEnroll template.
Which setting should you configure from the properties on the UserAutoEnroll certificate template?
A.
Issuance Requirements
B.
Request Handling
C.
Cryptography
D.
Subject Name
Since User2 doesn’t have an email defined, you’ll have to alter the information in the Subject Name to NOT include the email.
Look here for the screenshots of all the options on the tabs above:
https://docs.microsoft.com/en-us/previous-versions/windows/it-pro/windows-server-2008-R2-and-2008/cc725621(v=ws.10)
6
0