I'm trying to enable EV certs for my internal org. I have followed this article here: http://technet.microsoft.com/en-us/library/dd759060.aspx but I have been unable to get this to work. I do have a root certificate authority, although I also have an intermediate authority which issues the certificates. I came across this article (http://blogs.technet.com/b/askds/archive/2009/08/14/extended-validation-support-for-websites-using-internal-certificates.aspx) which discusses how to enable it on an intermediate authority, but I'm still missing something. I'm not quite sure how to troubleshoot this from here. I've got the Insurance policy complete, OIDs set within the public key policies of my GPO, and I've created a CAPolicy.inf file on my intermediate CAs.