Hi Anyone;
We have root CA offline and Sub ca that have also installed NDES. Two certificates expired CEP Encryption and Exchange Enrollment Agent (Offline). When I try to renew the certificate through the Certificate MMC, I get any error "the permissions on the certificate template do not allow the current user to enroll for this type of certificate. You do not have permission to request this type of certificate." I am logged on the sub CA with my domain admin account. I checked the template and the Domain Admin has read/write and enroll" authority. The server is 2008r2 Enterprise version