We do not have to be logged into the CA server directly to accomplish this work. Instead, we are logged into a new web server in our environment. From this web server, we take the following steps:
- Open Internet Explorer and browse to https://<CAServerName>/CertSrv/. In our case, it is https://CA1/CertSrv/:
Make sure you specify to access the site using HTTPS or you will not be allowed to finish requesting a certificate later during the wizard.
- Click on Request a certificate.
- You will see there is a pre-built request in there for acquiring a user certificate. For one of those, you simply click on that link, then click Submit ...