NDES Error 500 trying to enroll a cisco router
le code que j'utilise sur le cisco :
crypto pki trustpoint O2-CA
enrollment mode ra
enrollment url http://serverFQDN:80/certsrv/mscep/mscep.dll
usage ike
serial-number none
fqdn NAMEofROUTER
ip-address none
subject-name C=FR, ST=Place O=o2, CN=FQDNof ROUTER ,E=Email
revocation-check none
rsakeypair NameOfKeyPair
!
Hello,
I am using a certificate authority on Windows 2008 R2 enterprise. I have try without success to use SCEP (NDES) to enroll some cisco router
The router authenticate the Authority, but when I try to enroll I got an error 500 From IIS in the log
GET /certsrv/mscep/mscep.dll/pkiclient.exe operation=PKIOperation&message=MII... (long message = certificate request)
When I copy the certificate request, correcting the % character and paste into the web GUI, I get an error 0x8009200e
(In french le message signé n'a pas de signataire pour l'index des signataires spécifiés) JLO
September 6th, 2011 2:50am
Hi,
This thread might be helpful for you:
http://social.technet.microsoft.com/Forums/en-US/winserversecurity/thread/327db261-633a-4a0f-82b5-ec5d3b8e6bac
If you need further assistance, I suggest you also ask in French forum:
http://social.technet.microsoft.com/Forums/fr-FR/windowsserver2008fr/threads
Regards,
Bruce
Free Windows Admin Tool Kit Click here and download it now
September 12th, 2011 6:01pm
Hi,
Thanks for your response. I have already seen this thread, and check the IIS parameter. In 2008 R2, the parameter is correct. The installation of the NDES role add a parameter to allow 8192 character on the website.
My IIS Error is different 500 0 122 and not 404
I have asked in a french forum too. By now without success.
Have a nice day
Jean-LucJLO
September 12th, 2011 7:16pm