JSI Tip 7647. When you change a user's name in Active Directory, the certificate on that user's smart card stops working?

The subject behavior occurs because the value in the certificate's subject alternative name field does not match the Active Directory UserPrincipleName property value.

To workaround this behavior, issue a new certificate when you modify a user's name in Active Directory.

NOTE: See HOW TO: Configure a Certification Authority to Issue Smart Card Certificates in Windows 2000.

NOTE: See Certificate Enrollment Using Smart Cards.

Hide comments


  • Allowed HTML tags: <em> <strong> <blockquote> <br> <p>

Plain text

  • No HTML tags allowed.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Lines and paragraphs break automatically.