Enrolling certificates on Windows XP from CA running on Windows 2012
I've faced problem when user logged on computer running Windows XP, cannot enroll certificate from Certification Authority running on Windows Server 2012 R2.
First, enroll wizard didnt start at all, and then it start but at the final step access error was shown.
The following commands helped me:
certutil -setreg SetupStatus -SETUP_DCOM_SECURITY_UPDATED_FLAG certutil -setreg CA\InterfaceFlags -IF_ENFORCEENCRYPTICERTREQUEST
Remember that after running commands, you must restart ADCS service.