le code que j'utilise sur le cisco : crypto pki trustpoint O2-CA enrollment mode ra enrollment url http://serverFQDN:80/certsrv/mscep/mscep.dll usage ike serial-number none fqdn NAMEofROUTER ip-address none subject-name C=FR, ST=Place O=o2, CN=FQDNof ROUTER ,E=Email revocation-check none rsakeypair NameOfKeyPair ! Hello, I am using a certificate authority on Windows 2008 R2 enterprise. I have try without success to use SCEP (NDES) to enroll some cisco router The router authenticate the Authority, but when I try to enroll I got an error 500 From IIS in the log GET /certsrv/mscep/mscep.dll/pkiclient.exe operation=PKIOperation&message=MII... (long message = certificate request) When I copy the certificate request, correcting the % character and paste into the web GUI, I get an error 0x8009200e (In french le message signé n'a pas de signataire pour l'index des signataires spécifiés) JLO

Hi, This thread might be helpful for you: http://social.technet.microsoft.com/Forums/en-US/winserversecurity/thread/327db261-633a-4a0f-82b5-ec5d3b8e6bac If you need further assistance, I suggest you also ask in French forum: http://social.technet.microsoft.com/Forums/fr-FR/windowsserver2008fr/threads Regards, Bruce

Hi, Thanks for your response. I have already seen this thread, and check the IIS parameter. In 2008 R2, the parameter is correct. The installation of the NDES role add a parameter to allow 8192 character on the website. My IIS Error is different 500 0 122 and not 404 I have asked in a french forum too. By now without success. Have a nice day Jean-LucJLO