diff --git a/src/CommonLib/Helpers.cs b/src/CommonLib/Helpers.cs
index 63d4c466..031c6d16 100644
--- a/src/CommonLib/Helpers.cs
+++ b/src/CommonLib/Helpers.cs
@@ -295,6 +295,11 @@ public static IRegistryKey OpenRemoteRegistry(string target) {
             CommonOids.SmartcardLogon,
             CommonOids.AnyPurpose
         };
+
+        public static string[] SchannelAuthenticationOIDs = new string[] {
+            CommonOids.ClientAuthentication,
+            CommonOids.AnyPurpose
+        };
     }
 
     public class ParsedGPLink {
diff --git a/src/CommonLib/Processors/LdapPropertyProcessor.cs b/src/CommonLib/Processors/LdapPropertyProcessor.cs
index 145a1bca..3c5c63eb 100644
--- a/src/CommonLib/Processors/LdapPropertyProcessor.cs
+++ b/src/CommonLib/Processors/LdapPropertyProcessor.cs
@@ -566,6 +566,11 @@ public static Dictionary<string, object> ReadCertTemplateProperties(IDirectoryOb
                 effectiveekus.Intersect(Helpers.AuthenticationOIDs).Any() | effectiveekus.Length == 0;
             props.Add("authenticationenabled", authenticationEnabled);
 
+            // Construct schannelauthenticationenabled
+            var schannelAuthenticationEnabled =
+                effectiveekus.Intersect(Helpers.SchannelAuthenticationOIDs).Any() | effectiveekus.Length == 0;
+            props.Add("schannelauthenticationenabled", schannelAuthenticationEnabled);
+
             return props;
         }