Camelot, I am able to connect to remote CAs using the commands above while specifying the "FNQD\CAName"
However, when I try to connect to a remote CA to process the get-caschema (to test connect/reading) command, I am getting this error:
PS C:\Users\svc-ADCSpubCRL> connect-ca "fully.qualified.domain.name" | get-caschema
New-Object : Exception calling ".ctor" with "1" argument(s): "CCertConfig::GetField: The parameter is incorrect.
0x80070057 (WIN32: 87)"
At C:\Windows\system32\WindowsPowerShell\v1.0\Modules\PSPKI\Server\Connect-CertificationAuthority.ps1:13 char:4
In my test environment, running get-ca correctly returns the list of CAs. In my production environment, running the command fails with the following error:
PS C:\Users\svc-ADCSpubCRL> get-ca
Exception calling "GetCA" with "2" argument(s): "There is no such object on the server.
"
At C:\Windows\system32\WindowsPowerShell\v1.0\Modules\PSPKI\Server\Get-CertificationAuthority.ps1:14 char:20
Also, passing named arguments results in this:
PS C:\Users\svc-ADCSpubCRL> get-ca -name "chq*"
PS C:\Users\svc-ADCSpubCRL> get-ca -computername "chq*"
Exception calling "GetCA" with "2" argument(s): "There is no such object on the server.
"
At C:\Windows\system32\WindowsPowerShell\v1.0\Modules\PSPKI\Server\Get-CertificationAuthority.ps1:14 char:20
However, when I try to connect to a remote CA to process the get-caschema (to test connect/reading) command, I am getting this error:
PS C:\Users\svc-ADCSpubCRL> connect-ca "fully.qualified.domain.name" | get-caschema
New-Object : Exception calling ".ctor" with "1" argument(s): "CCertConfig::GetField: The parameter is incorrect.
0x80070057 (WIN32: 87)"
At C:\Windows\system32\WindowsPowerShell\v1.0\Modules\PSPKI\Server\Connect-CertificationAuthority.ps1:13 char:4
- New-Object PKI.CertificateServices.CertificateAuthority $CName
-
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
- CategoryInfo : InvalidOperation: (:) [New-Object], MethodInvocationException
-
FullyQualifiedErrorId : ConstructorInvokedThrowException,Microsoft.PowerShell.Commands.NewObjectCommand
In my test environment, running get-ca correctly returns the list of CAs. In my production environment, running the command fails with the following error:
PS C:\Users\svc-ADCSpubCRL> get-ca
Exception calling "GetCA" with "2" argument(s): "There is no such object on the server.
"
At C:\Windows\system32\WindowsPowerShell\v1.0\Modules\PSPKI\Server\Get-CertificationAuthority.ps1:14 char:20
- "__ComputerSet" {[PKI.CertificateServices.CertificateAuthority]::GetCA("Server ...
-
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
- CategoryInfo : NotSpecified: (:) [], MethodInvocationException
-
FullyQualifiedErrorId : DirectoryServicesCOMException
Also, passing named arguments results in this:
PS C:\Users\svc-ADCSpubCRL> get-ca -name "chq*"
PS C:\Users\svc-ADCSpubCRL> get-ca -computername "chq*"
Exception calling "GetCA" with "2" argument(s): "There is no such object on the server.
"
At C:\Windows\system32\WindowsPowerShell\v1.0\Modules\PSPKI\Server\Get-CertificationAuthority.ps1:14 char:20
- "__ComputerSet" {[PKI.CertificateServices.CertificateAuthority]::GetCA("Server ...
-
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
- CategoryInfo : NotSpecified: (:) [], MethodInvocationException
-
FullyQualifiedErrorId : DirectoryServicesCOMException