Skip to content

Implementing FIM 2010 Certificate Management (Part 4)

February 4, 2011

This is the fourth and final  installment in a four part series showing how to implement FIM 2010 Certificate Management solution. You can watch the previous three parts by going to each presentation:

  1. Implementing FIM 2010 Certificate Management (Part 1)
  2. Implementing FIM 2010 Certificate Management (Part 2)”
  3. Implementing FIM 2010 Certificate Management (Part 3)

If you wonder what is the final result of this specific implementation then please watch demonstration showing how to do manual certificate enrollment via FIM 2010 CM.

Todays demonstration covers the following tasks:

  • Configure Service Connection Point Permissions
  • Delegate Profile Template Permissions
  • Configure Permissions on Certificate Sponsor
  • Create SSL Profile Template
  • Configure Profile Details
  • Configure Enroll Policy
  • Configure Revoke Policy
  • Define Permissions on the SSL Profile Template
  • Request Certificate for FIM CM Portal
  • Fixing FIM 2010 CM Configuration (AES and CSP)
  • Request Certificate again
  • Installation of issued Certificate on the FIM 2010 CM
  • Set SPN for the new URL
  • Final test of the new Portal

For better experience please watch it in Full screen and enable HD.

One Comment
  1. Michael Morris permalink

    Hi Dmitrii,

    First of all, very nice blog.

    Secondly, I have been trying to do a POC for FIM CM and I keep running into issues with the FIM CM portal. I got thru the first 3 parts and I’m about 14 minutes into part 4 and I’m having issues logging into the portal. The first time I logged into the portal fine, but after a reboot and a windows update I get the following error message. Seems like a GPO issue, but I’m not sure what account to grant what permissions. Can you help me?

    “A required privilege is not held by the client. (Exception from HRESULT: 0x80070522)”


Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

%d bloggers like this: