You have an enterprise certification authority (CA) named CA1. You have a certificate template
named UserAutoEnroll that is based on the User certificate template. Domain users are configured
to autoenroll for UserAutoEnroll. A user named User1 has an email address defined in Active
Directory. A user named User2 does not have an email address defined in Active Directory. You
discover that User1 was issued a certificate based on UserAutoEnroll template automatically. A
request by user2 for a certificate based on the UserAutoEnroll template fails. You need to ensure
that all users can autoenroll for certificated based on the UserAutoEnroll template.
Which setting should you configure from the properties on the UserAutoEnroll certificate template?
A.
Issuance Requirements
B.
Request Handling
C.
Cryptography
D.
Subject Name
The answer is CORRECT.
In the Certificate Template properties, you go to the Subject Name tab. Here you can choose how the Subject Name should be and what to include like Email address, UPN etc.
https://i-technet.sec.s-msft.com/dynimg/IC195092.gif
3
0
Great comment. Thanks!
0
0
This question was on test as of JULY 2017
4
0