![](https://publications.lexmark.com/media/ids_assets/images/transparent.png)
From your computer, launch the registry editor.
![](https://publications.lexmark.com/media/ids_assets/images/transparent.png)
Navigate to HKEY_LOCAL_MACHINE > SOFTWARE > Microsoft > Cryptography > MSCEP.
![](https://publications.lexmark.com/media/ids_assets/images/transparent.png)
Set EnforcePassword to 0.
![](https://publications.lexmark.com/media/ids_assets/images/transparent.png)
From IIS Manager, expand the CA, click Application Pools, and then select SCEP.
![](https://publications.lexmark.com/media/ids_assets/images/transparent.png)
From the right panel, click Advanced Settings.
![](https://publications.lexmark.com/media/ids_assets/images/transparent.png)
Set Load User Profile to True, and then click OK.
![](https://publications.lexmark.com/media/ids_assets/images/transparent.png)
From the right panel, click Recycle to restart the SCEP application pool.
![](https://publications.lexmark.com/media/ids_assets/images/transparent.png)
From IIS Manager, expand the CA, and then expand Sites > Default Web Site.
![](https://publications.lexmark.com/media/ids_assets/images/transparent.png)
From the right panel, click Restart.
When opening the NDES from web browser, you can now only view the CA thumbprint.