M
Martin Jakob
Hello,
I am trying to request a certifcate for a Pix Firewall via SCEP. The CA is a
Windows 2000 Enterprise Root CA. So far i didn't have success. In the
Eventlog of the CA is the following entry:
"Certificate Services denied request 8315 because Access is denied.
0x80070005 (WIN32: 5). The request was for CN=pix+
OID.1.2.840.113549.1.9.2=pix. Additional information: Denied by Policy
Module".
In Technet i found following passage:
"Because enterprise certification authorities use Active Directory to
determine the identity of the requester and to determine whether the
requester has the security permissions to request a certificate of the type
that they specify, the CA automatically determines whether a requester is
authorized to receive the certificate requested."
So, is it possible to enroll this certificate to the Pix, by adding the
Device to the Active Directory? Any hints/tips are welcome.
I am trying to request a certifcate for a Pix Firewall via SCEP. The CA is a
Windows 2000 Enterprise Root CA. So far i didn't have success. In the
Eventlog of the CA is the following entry:
"Certificate Services denied request 8315 because Access is denied.
0x80070005 (WIN32: 5). The request was for CN=pix+
OID.1.2.840.113549.1.9.2=pix. Additional information: Denied by Policy
Module".
In Technet i found following passage:
"Because enterprise certification authorities use Active Directory to
determine the identity of the requester and to determine whether the
requester has the security permissions to request a certificate of the type
that they specify, the CA automatically determines whether a requester is
authorized to receive the certificate requested."
So, is it possible to enroll this certificate to the Pix, by adding the
Device to the Active Directory? Any hints/tips are welcome.