Why not see the new certificate template?

Good afternoon.
I have a server with owa on it a certificate for https. Chrom swears by sha1.
There is a task to reissue the certificate with sha256.
Has included support for sha256 using certutil, create a copy of the certificate template to web server, but it does not appear in the window enable certificates.
f0dfa9afe7fd4712bf0ff6ad20338a6d.JPG
Understand what is wrong set up, but do not understand that.
July 12th 19 at 17:11
1 answer
July 12th 19 at 17:13
You have domain infrastructure geographically distributed ?
No, I have everything locally - Nia.Greenfeld commented on July 12th 19 at 17:16
This situation occurs when not passed a full cycle replication of the Configuration section - vallie_OKon commented on July 12th 19 at 17:19
I have a very local infrastructure - DC 1-there is nowhere to replicate) - Nia.Greenfeld commented on July 12th 19 at 17:22
In General, the problem is that now I am blunt, I do not understand how to issue a certificate for a web server with support for sha256 - Nia.Greenfeld commented on July 12th 19 at 17:25
CA for 2012 ? - vallie_OKon commented on July 12th 19 at 17:28
Two thousand eight - Nia.Greenfeld commented on July 12th 19 at 17:31
the requested certificate template is not supported by this CA - Nia.Greenfeld commented on July 12th 19 at 17:34
Seems ass - the CA uses microsoft's strong cryptographic provider, and it does not support sha256. - Nia.Greenfeld commented on July 12th 19 at 17:37
Upgrade to 2008 R2 - vallie_OKon commented on July 12th 19 at 17:40
Suit b cryptography only with 2008 R2 - vallie_OKon commented on July 12th 19 at 17:43
: Mine's worse - I have windows small business server.
Like there is: provider Name: Microsoft Software Key Storage Provider
Name: Microsoft Software Key Storage Provider
Impl Type: 2 (0x2)
NCRYPT_IMPL_SOFTWARE_FLAG -- 2

And the article is: https://technet.microsoft.com/ru-ru/library/dn7716...

But it is for 2012. I don't know the risk or not - Nia.Greenfeld commented on July 12th 19 at 17:46

Find more questions by tags Windows ServerActive Directory