mirror of
https://github.com/MicrosoftDocs/windows-itpro-docs.git
synced 2025-05-18 16:27:22 +00:00
Update windows/security/identity-protection/hello-for-business/hello-hybrid-key-whfb-settings-pki.md
Co-authored-by: mapalko <mapalko@microsoft.com>
This commit is contained in:
ImranHabib
GitHub
parent
a2f324116b
commit
cec0159439
@ -83,7 +83,7 @@ The certificate template is configured to supersede all the certificate template
|
|||||||
> [!NOTE]
|
> [!NOTE]
|
||||||
> The certificate for the CA issuing the domain controller certificate must be included in the NTAuth store. By default, the Active Directory Certificate Authority's root certificate is added to the NTAuth store. If you are using a multi-tier CA hierarchy or a third-party CA, this may not be done by default. If the Domain Controller certificate does not directly chain to a CA certificate in the NTAuth store, user authentication will fail.
|
> The certificate for the CA issuing the domain controller certificate must be included in the NTAuth store. By default, the Active Directory Certificate Authority's root certificate is added to the NTAuth store. If you are using a multi-tier CA hierarchy or a third-party CA, this may not be done by default. If the Domain Controller certificate does not directly chain to a CA certificate in the NTAuth store, user authentication will fail.
|
||||||
|
|
||||||
The following PowerShell command can be used to check the NTAuth certificate:
|
The following PowerShell command can be used to check all certificates in the NTAuth store:
|
||||||
|
|
||||||
```powershell
|
```powershell
|
||||||
Certutil -viewstore -enterprise NTAuth
|
Certutil -viewstore -enterprise NTAuth
|
||||||
|
|||||||
Loading…
x
Reference in New Issue
Block a user