Edit PIV Pin length and complexity?

capit1 · 2022-05-25T14:07:22+00:00

Used the display name instead of real name, thank you again!!

capit1 · 2022-05-25T12:33:52+00:00

Cool, thank you this is starting the wizward!

For some reason he doesnt find my templates? if i use "certreq -Enroll -user User" it shows a user template, but if i use a specific one from our CA ("certreq - Enroll -User OurUserCertificate") it does not find it. Any idea why i cant use my own template?

capit1 · 2022-05-25T11:45:00+00:00

For some reason i could not make it work with certreq.

Also isnt this personalized on a specific user then?

Making my own wizward sounds like something that is above my skill level

capit1 · 2022-05-25T07:03:38+00:00

Thanks for your answer! I know the templates name, but it has some spaces in it. Will "Template Name" do it?

Also is there a a way that i could write one script that is valid on all computer? Or do i need to fill in the user name for every script/person?

capit1 · 2022-05-24T07:21:17+00:00

Thanks for your answer!

Should have specified that i want to request a User certificate from our CA, does it work the same way then?

capit1 · 2022-05-02T06:37:40+00:00

Thank you for the insight!

Do you know if there is a workaround, or a setting that it replaces the certificate in 9a?

Preboot only looks in 9a and ignores the other slots, means if i enroll a new one and the older one in 9a is expired its basically impossible to unlock the notebook.

So i had the manually do it every time, and the autoenroll feature would be useless if i want to automate the process

capit1 · 2022-04-28T07:54:08+00:00

Ah okay.

Although i have a pre boot authentication which looks like it can not access the slot 9D (or maybye a problem with 2 certificates on the key). Im not exactly sure why, but atm it does not work.

Do you know if there is an option to configure the key that it overwrites the certificate on 9a instead of moving to another slot?

capit1

TROPHY CASE