MMC and certsrv.msc

[John Jarrett]

One of our groups here uses a stand-alone Microsoft CA to
issue client certificates for strong authentication
access to their web product. Currently new clients will
go to a web page and apply for a certificate and one of
the support reps will login to the server and use the
certsrv.msc snapin locally to approve or deny those
certificates. I would like to be able to allow them to
access that snapin over the network. I have saved that
snap-in and moved the *.msc to a local machine that has a
mapped drive to the CA server. However whenever I try I
get an error: "Snap-in creation failed."

Any help you could provide would be greatly appreciated.

Thanks in advance,

jj

 

[Steven L Umbach]

I have never tried saving/moving. I usually create the mmc on the computer
used to manage and then select "another computer" when given the option of
selecting what computer to manage. There is also a box at the bottom when
you do this for "allow the selected computer to be changed when launching
from the command line". Perhaps you needed to select that for your saved
console. --- Steve

 

[Vishal Agarwal[MSFT]]

On the machines where "Snap-in creation failed" error is noticed, is admin
pak installed?

The Certificate Services snapin relies on certain binaries which gets
installed either during the installation of the CA or by Admin Pak on the
machine.

Thanks,
Vishal[MSFT]