Implementing FIM 2010 Certificate Management (Part 4)
This is the fourth and final installment in a four part series showing how to implement FIM 2010 Certificate Management solution. You can watch the previous three parts by going to each presentation:
- “Implementing FIM 2010 Certificate Management (Part 1)”
- “Implementing FIM 2010 Certificate Management (Part 2)”
- “Implementing FIM 2010 Certificate Management (Part 3)”
If you wonder what is the final result of this specific implementation then please watch demonstration showing how to do manual certificate enrollment via FIM 2010 CM.
Todays demonstration covers the following tasks:
- Configure Service Connection Point Permissions
- Delegate Profile Template Permissions
- Configure Permissions on Certificate Sponsor
- Create SSL Profile Template
- Configure Profile Details
- Configure Enroll Policy
- Configure Revoke Policy
- Define Permissions on the SSL Profile Template
- Request Certificate for FIM CM Portal
- Fixing FIM 2010 CM Configuration (AES and CSP)
- Request Certificate again
- Installation of issued Certificate on the FIM 2010 CM
- Set SPN for the new URL
- Final test of the new Portal
For better experience please watch it in Full screen and enable HD.
Security and Identity in the Cloud 
Hi Dmitrii,
First of all, very nice blog.
Secondly, I have been trying to do a POC for FIM CM and I keep running into issues with the FIM CM portal. I got thru the first 3 parts and I’m about 14 minutes into part 4 and I’m having issues logging into the portal. The first time I logged into the portal fine, but after a reboot and a windows update I get the following error message. Seems like a GPO issue, but I’m not sure what account to grant what permissions. Can you help me?
“A required privilege is not held by the client. (Exception from HRESULT: 0x80070522)”