JSI Tip 8513. Downlevel clients in a Windows Server 2003 domain display 'No Alternative Name' on certificates?

If a user on a downlevel client that is joined to a Windows Server 2003 domain that enrolls for certificates from an Enterprise certification authority in the Windows Server 2003 domain, the downlevel client does not correctly display the UPN (User Principal Name) in the Subject Alternative Name field, but displays No alternative name instead.

Even though the certificate has been issued correctly, and contains the correct information, downlevel clients (Windows 95, Windows 98, Windows Milennium Edition, and previous versions of Windows NT) are unable to correctly display this field.

Hide comments


  • Allowed HTML tags: <em> <strong> <blockquote> <br> <p>

Plain text

  • No HTML tags allowed.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Lines and paragraphs break automatically.