An unexpected error occured. Error. Please insert user's smart card

[Guest]

We have a lab set up for certificate issuance on iKey tokens using microsoft's IIS certsvr with our subordinate CA. We can issue certificates for users who are logged on the enrollment station but are unable to issue them when trying the advanced request "on behalf of another user". We always end up getting the message from the subject line "An unexpected error...".

Our thinking is that we do have the correct set up since users can get them if they log on the enrollment station but this isn't fit yet for production yet as we want administrators to issue the initial Token certs before rollout.

Any ideas on what we are missing?

Thanks

 

[Laudon Williams [MSFT]]

You may find this helpful:
http://www.microsoft.com/technet/prodtechnol/windowsserver2003/maintain/operate/ws3pkibp.asp

--
This posting is provided "AS IS" with no warranties, and confers no rights.

We have a lab set up for certificate issuance on iKey tokens using

microsoft's IIS certsvr with our subordinate CA. We can issue certificates
for users who are logged on the enrollment station but are unable to issue
them when trying the advanced request "on behalf of another user". We always
end up getting the message from the subject line "An unexpected error...".

Our thinking is that we do have the correct set up since users can get

them if they log on the enrollment station but this isn't fit yet for
production yet as we want administrators to issue the initial Token certs
before rollout.