The commonName field is not allowed. #13
-
|
Hello, first thank you for your really good tool. I installed a policy based on the computer sid template, now i get Request denied reason is The commonName field is not allowed. |
Beta Was this translation helpful? Give feedback.
Replies: 3 comments
-
|
Hello @78Lefty this means your certificate request contains this field (commonName) and you must define a rule to allow this (everything which is not defined is automatically denied). Have a look at the documentation and other examples: Kind regards |
Beta Was this translation helpful? Give feedback.
-
|
Hello, Thanks for your very quick answer, i added it, now i get |
Beta Was this translation helpful? Give feedback.
-
|
May it be that you placed the rule into the SubjectAlternativeName section instead of the Subject section of your config file? commonName is a field which occurs in the "Subject Distinguished Name". userPrincipalName (as used in the example) is a field that occurs in the "Subject Alternative Name" of a certificate or certificate request, so these two happen at different places. |
Beta Was this translation helpful? Give feedback.
May it be that you placed the rule into the SubjectAlternativeName section instead of the Subject section of your config file? commonName is a field which occurs in the "Subject Distinguished Name". userPrincipalName (as used in the example) is a field that occurs in the "Subject Alternative Name" of a certificate or certificate request, so these two happen at different places.