Hi! I'm setting up a vpn lab, and one of the computers is supposed to be the enterprise root ca. It's a member server. When I try to set up the ca, the enterprise part is greyed out. I did a google search, and an answer was to run adsiedit.msc with 19 steps to setup the public keys service. My question is, do I run this on the domain controller or on the member server I'm going to put the ca on? I tried the member server and received messages that the domain connection couldn't be found, another saying that the connection configuration couldn't be loaded, and one that says the schema coulsn't be loaded. I know I'm connected to the domain since I just joined the member server to the domain, and I pinged it. Any and all responses will be greatly appreciated. Thanks.