Closed helloyw closed 5 months ago
This is mostly because the certificate template you are using is not enabled. Run the certipy find command again with -enabled to get only enabled certificates.
This is mostly because the certificate template you are using is not enabled. Run the certipy find command again with -enabled to get only enabled certificates.
But I used this template and successfully applied for a pfx certificate using esc1, but encountered an error like the one in the picture. Is this error also caused by not enabling the template?
kerberos sessionerror: kdc_err_inconsistent_key_purpose(certificate cannot be used for pkinit client authentication)
Looking forward to your reply again
This error occurred when I was using ESC4,By using the command - vulnerable, it can be determined that the template has an ESC4 vulnerability