A certificate is issued for trust purposes, as far as I know this can't be
done. I would be surprised if it could because then it would no longer be
trustworthy (The cert).
I have copied the PKI folks in who have a better background in this area.
--
Paul Bergson
MVP - Directory Services
MCTS, MCT, MCSE, MCSA, Security+, BS CSci
2008, 2003, 2000 (Early Achiever), NT4
Microsoft's Thrive IT Pro of the Month - June 2009
http://www.pbbergs.com
Please no e-mails, any questions should be posted in the NewsGroup This
posting is provided "AS IS" with no warranties, and confers no rights.
"Jeremy Wiebe" <> wrote in message
news:84630547-6D78-4B2D-8C21-...
> Hi there,
>
> I'm working on an application where we are going to use User Principal
> Name
> Mapping (http://technet.microsoft.com/en-us/l.../bb742438.aspx) to map
> incoming requests on our application to windows accounts. From what I
> understand, this will require user certificates issued by a CA within the
> domain.
>
> I've got a test Windows 2003 R2 domain up and running and have the CA
> running as well.
>
> What I can't figure out is how to issue a certificate for a user without
> logging in as that user and using the web enrollment app. Is there any
> way
> for a domain admin to issue a certificate for a user and then get access
> to
> the certificate?
>
> Thanks.
Similar Threads
Linear Mode
