Duplicating the certificate template

To duplicate the certificate template, follow these steps:

1. On the CA server, open the Certificate Template Console certtmpl.msc and right-click Basis-EFS.

2. Select Duplicate Template.

   

3. On the General tab, specify a suitable name and the validity period.

   

4. Confirm with Apply.

5. Now open the Security tab in the DriveLock File Protection Properties of the basis-EFS.

6. To configure Auto Enrollment, assign the Read, Enroll and Autoenroll rights to the user and confirm these settings.

   

7. On the Request handling tab, select Signature and encryption as the purpose.

   

8. On the Extensions tab in Key Usage, place a check mark next to the Allow encryption of user data option and confirm with OK.