Hey,
Not sure if you can help with this one however this forum has been a great help for my lab!
I have implemented Hello 4 Business using the Microsoft guide.
https://docs.microsoft.com/en-us/windows/security/identity-protection/hello-for-business/hello-cert-trust-adfs
Everything seems to work except for the certificate request for the client. I set my PKI lab up using on of your guides, to enable me to use bit locker management within MCEP.
The error I'm getting is below, this certificate is a duplicate of the Smart Card Logon template. I can request the built in User certificate and that works fine.
I can't seem to find anything online for this error, I just get the domain trust posts come up.
I have tried on a couple of different clients and non of them work. I assume I am missing a DNS record however cannot work out what's missing!
Error: https://imgur.com/a/DNvkcaE
Many thanks
Jon.