Camelot, I want to thank you for your attention and assistance through all this. You are a true rockstar!
Current Status:
Script running from Server_A in Domain_A against CAs in Domain_A : success
Script running from Server_1 in Domain_B against CAs in Domain_A : Failure
Script running from Server_1 in Domain_B against CAs in Domain_B : Failure
I am looking at the CAs in Domain_B:
CA1 = Windows Server 2003
Current Status:
Script running from Server_A in Domain_A against CAs in Domain_A : success
Script running from Server_1 in Domain_B against CAs in Domain_A : Failure
Script running from Server_1 in Domain_B against CAs in Domain_B : Failure
I am looking at the CAs in Domain_B:
CA1 = Windows Server 2003
remote registry service [running, read access confirmed(remotely)]
svc-acct in local administrators group [by way of another group, check]
CA DB Permissions for svc-acct [read,manage ca]
remote connection from tools server on port 135 [confirmed]
PoSH 2.0 installed, PSPKi 2.8, local tests:
get-ca [fails, 'exception calling GetCA with 2 args: "there is no such object on the server" '],
connect-ca . | get-caschema [fails, 'New-Object: Exception calling ".ctor with 1 arg: "GetCertConfig::GetField: parameter incorrect. 0x80070057"' ]
CA2 = Windows Server 2008 R2remote registry [running, read access confirmed(remotely)]
svc-acct in local administrators group [by way of another group, check]
CA DB Permissions for svc-acct [read,manage ca]
remote connection from tools server on port 135 [confirmed]
PoSH 2.0 installed, PSPKI 2.8, Local tests:
get-ca [fails, 'exception calling GetCA with 2 args: "there is no such object on the server" '],
connect-ca . | get-caschema [fails, 'New-Object: Exception calling ".ctor with 1 arg: "GetCertConfig::GetField: parameter incorrect. 0x80070057" (WIN32: 87)' ]
Server_1 in problematic domain:PoSH 4.0, PSPKI 2.8
PoSH 2.0 installed, PSPKI 2.8, Local tests:
get-ca [fails, 'exception calling GetCA with 2 args: "there is no such object on the server" '],
connect-ca [netbios/fqdn of known CA] | get-caschema [fails, New-Object : Exception calling ".ctor" with "1" argument(s): "There is no such object on the server. ]