Hello, I generated a CSR on my non-domain server and manually tried to submit the request to our domain-joined Enterprise CA server via the following command: certreq -submit -attrib "CertificateTemplate:Machine" cert_req.txt cert.cer I am getting this error when I try to run the command on an admin OWNER account of the certificate template: "The DNS name is unavailable and cannot be added to the Subject Alternate name." I have found a solution for this after lots of research. I will post it tomorrow.

this is because you cannot use Computer template for offline requests. Instead, you should use Web Server template or duplicated Computer template with modified subject. By default, Computer template constructs subject from Active Directory and this is not appropriate setting for offline requests. If you are using a copy of Computer template, modify Subject tab to "Supply in request".My weblog: http://en-us.sysadmins.lv PowerShell PKI Module: http://pspki.codeplex.com Windows PKI reference: on TechNet wiki

This sums my solution up well. I simply duplicated the Computer cert template and altered that one setting to "Supply in Request"

This sums my solution up well. I simply duplicated the Computer cert template and altered that one setting to "Supply in Request"