Hello to everyone, We have and we want to use in future: Gemalto .Net Cards & USB Gemalto GemPC Twin card reader. I installed FIM CM 2010 by following these steps: http://technet.microsoft.com/en-us/library/ee534916(WS.10).aspx Now i have FIM CM portal on http://server_adress/certificatemanagement Certification Authority is installed on the same server like DC. On a client machine i installed CM Client, Gemalto drivers.. ANd when on Forefront Identity Manager Certificate Management home page, i click: Enroll a user for a new set of certificates or a smart card choose name Britta and press Search i got an error: Current user does not have access to any profile templates. if i try to Enroll a user for a new set of certificates or a smart card from another Domain Admin rights computer and choose Administrator and press Search then i can Select a Profile Template but i got an error: Please note the following information and contact your system administrator: Access is denied. Domain_name\bsimon does not have Enroll access right to the Domain_name\Administrator user. To continue press the browser's BACK button. If this error persists, please contact your system administrator. Please can you help me to resolve my problem??

On Thu, 21 Apr 2011 12:43:52 +0000, Toni666 wrote: i got an error: Current user does not have access to any profile templates. if i try to Enroll a user for a new set of certificates or a smart card from another Domain Admin rights computer and choose Administrator and press Search then i can Select a Profile Template? but i got an error: Please note the following information and contact your system administrator: ? ? Access is denied. AVACOM\bsimon does not have Enroll access right to the Domain_name\Administrator user.? To continue press the browser's BACK button. If this error persists, please contact your system administrator. ? Please can you help me to resolve my problem?? You've missed permissions assignments somewhere. Walk through steps 10, and then 16 through 19 in the step by step document again. Paul Adare MVP - Identity Lifecycle Manager http://www.identit.ca Those who can, do. Those who cannot, teach. Those who cannot teach, HACK!

Thank you Paul on your fast answer. I will try to check now, i hope it will help. I am totally new to this area, so I wonder can i install FIM & FIM CM on the same server without any problems? To writte certifiate on our cards (Gemalto .Net Cards & USB Gemalto GemPC Twin card reader) do i need some other software or FIM CM is sufficient to do that?

Tony, For your first question, you can install FIM and FIM CM on same server only if the FIM CM web site is using a port that is not 80. By default, when Sharepoint is installed, it uses port 80 and disables the default web site. If you need to put FIM CM on same machine, you can go to default web site, have it use 81 instead. Then they won't conflict. However, it means you will need to access the site as http://<serverName>:81. I believe there probably is a way to have the port be added if you use specific URL but I'm not sure of the steps. Glenn

Tony, For your first question, you can install FIM and FIM CM on same server only if the FIM CM web site is using a port that is not 80. By default, when Sharepoint is installed, it uses port 80 and disables the default web site. If you need to put FIM CM on same machine, you can go to default web site, have it use 81 instead. Then they won't conflict. However, it means you will need to access the site as http://<serverName>:81. I believe there probably is a way to have the port be added if you use specific URL but I'm not sure of the steps. Glenn

Thank you Glenn on your Answer.