Hello,
I recently got permission to upgrade our CA and move from SHA1 to SHA2 certs for all devices in our org. All workstation and user certs are now SHA512 4096.
Server 2016 Standard VM on ESXI 5.5
My issue now is with the remaining templates for servers. I made a copy of the Domain Contoller template and it will not allow me to select "Provider Category" under the cryptography tab. I need to change this to KSP from Legacy CSP as I did on both the user and workstation templates.
Any idea why this would be greyed out? This new CA has a new private key and the original CA is going to be offlined as per best practices.
Thanks in advance.