Smart Card Enrollment not showing in CertSrv Windows 2003 Server

ok first of hello all. issue similar post on forum http://social.technet.microsoft.com/forums/en-us/winserversecurity/thread/7a66ad54-63e4-4ee6-aef7-70e3dfcdfc99/ (this problem dealing server 2003 r2 enterprise sp1) in forum link there questions asked didn't seem answered.

i set windows server 2003 enterprise server enterprise root ca. (fully patched)  i have installed web enrollment role , verified working can pages , request certificates. 

i using gemalto .net 2.0 smart card scm microsystems scrx31 card reader

i have installed following certificates on server: enrollment agent, smart card user , smarcard logon. 

here main issue

but when go http://<server_name>/certsrv, request certificate, advanced not see option "request certificate smart card on behalf of user...".   option won't show on server or client trying request cert on behalf (an xp laptop)

i have added few different hotfixes. enabled active x items in internet security....iis installed. driver smart card reader installed on both server , client laptop.

http://support.microsoft.com/kb/909520

 http://www.microsoft.com/download/en/details.aspx?displaylang=en&id=4758

can enterprise root ca on same server enrollment agent? 

i have never set smart card before directions seem simple.

http://www.gemalto.com/dwnld/5042_070520_wp_gemalto_.net_certificate_enrollment_using_msft_certificate_services.pdf

i have completed of steps in guide until asked "request certificate smart card on behalf of user...".   option isn't there. have been on web , can't find else issue. can't 1 :(

what have missed may cause option not show up? might have done out of order? seen before?

also can have multiple cas on same server?

i may have left out few details feel free ask. wits end here... in advance..

security forum right place ask question. i would suggest post there.

http://social.technet.microsoft.com/forums/en-us/winserversecurity/threads

---

this posting provided "as is" no warranties or guarantees , confers no rights.

most of downtime's caused because of sysadmin's curiosity ! - santosh

Windows Server  >  Windows Server General Forum