Certificate Templates

The Certificate Templates page provides a list of enumerated certificate templates in entire Acitve Directory. The list contains the Published, Allow Domain Authentication, Enrollee Supplies Subject, Require Manager Approval, Risk Score and Issue Counts columns.

Certificate Template Details

Details page contains the Risk Score of the certificate template, Information and Issues panes.

You can analyze objects in the Graph module by clicking the Visualize button on the upper left side of the Information Pane.

Information

Information Pane contains Details and Published By tabs respectively.

Details

Details tab contains attributes below about certificate template object.

Attribute Description

Attribute	Description
Name	Name of the specified object. (Ldap Display Name: name)
Display Name	The display name for an object. (LDAP Display Name: displayName)
Distinguished Name	Active Directory distinguished name of the object. (Ldap Display Name
Published	Whether the certificate template has been published by any certificate authority.
Enrollee Supplies Subject	Whether specifying a Subject Alternative Name (SAN) during certificate enrollment to this certificate template has been allowed.
Allow Domain Authentication	Whether certificate template contains any Extended Key Usage(EKU) that allows to auhenticate in the domain.
Require Manager Approval	Whether the certificate requests based on the template require manager approval to be issued.
Validity Period	The period of time during which a certificate is intended to be valid.
Renewal Period	The period of time during which a certificate is intended to be renew.
Schema Version	The certificate template schema version.
Authorized Signatures Required	The number of Authorized Signatures to issue a certificate.
Enrollment Flags	Specifies the enrollment flags. (Field Reference)
Certificate Name Flags	Specifies the subject name flags. (Field Reference)
Extended Key Usages	Key usage extensions define the purpose of the public key contained in a certificate. You can use them to restrict the public key to as few or as many operations as needed.
Certificate Application Policies	Specifies certificate application policy extension. In GUI, this attribute can be controlled by setting "Application Policies" in "Extensions" tab. (Field Reference)
Registration Authority Application Policies	Encapsulates embedded properties for multipurpose use. In GUI, this attribute can be controlled by checking `This number of authorized signatures` check box in `Issuance Requirements` tab and choosing `Application Policy` menu. (Field Reference)
Issuance Policies	Contains the list of required policy OIDs from registration authorities who sign the enrollment request. (Field Reference)
Created Time	The date when this object was created. (Ldap Display Name: whenCreated)
Last Changed Time	The date when this object was last changed. (Ldap Display Name: whenChanged)

Name

Name of the specified object. (Ldap Display Name: name)

Display Name

The display name for an object. (LDAP Display Name: displayName)

Distinguished Name

Active Directory distinguished name of the object. (Ldap Display Name

Published

Whether the certificate template has been published by any certificate authority.

Enrollee Supplies Subject

Whether specifying a Subject Alternative Name (SAN) during certificate enrollment to this certificate template has been allowed.

Allow Domain Authentication

Whether certificate template contains any Extended Key Usage(EKU) that allows to auhenticate in the domain.

Require Manager Approval

Whether the certificate requests based on the template require manager approval to be issued.

Validity Period

The period of time during which a certificate is intended to be valid.

Renewal Period

The period of time during which a certificate is intended to be renew.

Schema Version

The certificate template schema version.

Authorized Signatures Required

The number of Authorized Signatures to issue a certificate.

Enrollment Flags

Specifies the enrollment flags. (Field Reference)

Certificate Name Flags

Specifies the subject name flags. (Field Reference)

Extended Key Usages

Key usage extensions define the purpose of the public key contained in a certificate. You can use them to restrict the public key to as few or as many operations as needed.

Certificate Application Policies

Specifies certificate application policy extension. In GUI, this attribute can be controlled by setting "Application Policies" in "Extensions" tab. (Field Reference)

Registration Authority Application Policies

Encapsulates embedded properties for multipurpose use. In GUI, this attribute can be controlled by checking This number of authorized signatures check box in Issuance Requirements tab and choosing Application Policy menu. (Field Reference)

Issuance Policies

Contains the list of required policy OIDs from registration authorities who sign the enrollment request. (Field Reference)

Created Time

The date when this object was created. (Ldap Display Name: whenCreated)

Last Changed Time

The date when this object was last changed. (Ldap Display Name: whenChanged)

Published By

Published By tab contains a list of certificate authorities that are published this certificate template. This list contains Root CA, Enterprise CA and Enrollee Supplies Subject columns.

Issues

Issues pane contains identified issues on the certificate template object.

PreviousCertificate Authorities NextCA Certificates

Last updated 1 year ago