I'm having a problem similar to that posted in this question:
Missing Certificate template From certificate to issue
The short version is that I've created a duplicate certificate template and I'm trying to add it to my domain CA so that I can issue certificates with it. However, when I go into the Certification Authority MMC and go to "Certificate Templates -> New -> Certificate Template To Issue", my template is missing (along with quite a number of other templates that are present in the domain).
Unlike the previous question, however, my CA is running on Server 2008 R2 Enterprise. Our organization has a single DC and a single CA, so I'm not seeing where there could be propagation delay.
Any ideas how to get my template to show so that I can issue certificates?
Best Answer
Just wanted to throw this out there for future searchers who this doesnt apply to. For me, I had to go into ADSI Edit and change a flag from 2 to 10. I did have to restart ADCS service afterwards before the cert became available.
"...ADSIEdit.msc, then expand CN=Configuration | CN=Services | CN=Public Key Services | CN=Enrollment Services. Right click the CA in the right pane that you want to enroll from and click properties. Find the flags attribute; and verify that it is set to 10. If it isn’t set to 10, then set it to 10 using ADSIedit.msc and allow for Active Directory replication to complete."
http://securitymusings.com/article/1733/cant-create-a-new-certificate-template-to-issue