Enable SAN certificate support in Microsoft Certificate Services

http://technet.microsoft.com/en-us/library/ff625722(WS.10).aspx

By default, a CA that is configured on a Windows Server 2003-based computer does not issue certificates that contain the SAN (Subject Alternative Name) extension. If SAN entries are included in the certificate request, these entries are omitted from the issued certificate. To change this behavior, run the following commands at a command prompt on the server that runs the Certification Authority service. Press ENTER after each command.

certutil -setreg policy\EditFlags +EDITF_ATTRIBUTESUBJECTALTNAME2
net stop certsvc
net start certsvc

This changes the following entry in the registry.

SNAG-0011

More information can be found How to Request a Certificate With a Custom Subject Alternative Name

Computers and Internet Uncategorized

1 Comment Leave a comment

Leave a Reply

Please log in using one of these methods to post your comment:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: