I'm not aware of an automated way to issue certs to workgroup clients. Check out this session I did on IBCM it covers workgroup clients: http://memug.wordpress.com/2014/08/08/replay-july-2014-memug/
Thanks, Justin Chalfant Premier Field Engineer - Configuration Manager Public Sector Microsoft Services Tel : (303) 846-2701 Email: [email protected]<mailto:[email protected]> If you have any feedback about my work, please let either myself or my manager Rusty Gray know at [email protected]<mailto:[email protected]> From: [email protected] [mailto:[email protected]] On Behalf Of James Avery Sent: Wednesday, September 24, 2014 12:06 PM To: [email protected] Subject: [mssms] SCCM 2012 R2 CU2 - PKI to workgroup computers Hello everyone, I'm having issues with workgroup computers, not domain systems when I request a certificate. I have the following configuration: 1. CA Enterprise a. I have created the SCCM Client Certificate b. I have created the SCCM Web Server Certificate c. I have created the SCCM Distribution Point Certificate 2. GPO is configured 3. SCCM 2012 R2 CU2 configured to do HTTP and HTTPS a. Installed SCCM Client Certificate b. Installed SCCM Web Server Certificate c. Installed Distribution Point Certificate 4. Deployed to a domain computer good on PKI Workgroup Computers: I'm having issues with deploying certificates 1. Windows 7 - (ERROR) not successful 2. Windows Server 2008 R2 - (ERROR) not successful 3. Windows Server 2003 - successful 4. Windows XP - (ERROR)not successful (unable to find CERTUTIL is not a recognized as an internal or external command. Meaning it can't find it) How I'm getting the certs for the clients is by utilizing the following scripts from this URL. http://www.ithierarchy.com/ITH/node/48 I did find a couple of errors in the code, but if it's working on my Server 2003, then it should work on the others. Windows 7 and Windows 2008 R2 seem to have the same issue. The error I'm getting is the following: Command line requesting the cert ---- CertReq -new -f testcomputer.home.pvt.inf c:\client\testcomputer.home.pvt.req Error --- Template not found. SCCMClientCertificate (this is my template)
