_JJ_
asked on
Event Viewer ID 20
This is a repost. No one got back to my original post. On my Windows 2003 DC i am getting this error in the event viewer under system
Type = Warning
Source = KDC
Event ID = 20
The currently selected KDC certificate was once valid, but now is invalid and no suitable replacement was found. Smartcard logon may not function correctly if this problem is not remedied. Have the system administrator check on the state of the domain's public key infrastructure. The chain status is in the error data.
I have also ran this which doesnt work either. The following info is from the command.
Microsoft Windows [Version 5.2.3790]
(C) Copyright 1985-2003 Microsoft Corp.
C:\Documents and Settings\Administrator>cer
0: DENVER2003
*** Testing DC[0]: DENVER2003
** Enterprise Root Certificates for DC DENVER2003
Certificate 0:
Serial Number: 4f4bce7e9b45a28e4e9213473d
Issuer: CN=HCL Enterprise, DC=hospitalcooperative, DC=com
Subject: CN=HCL Enterprise, DC=hospitalcooperative, DC=com
Certificate Template Name: CA
CA Version: V0.0
Signature matches Public Key
Root Certificate: Subject matches Issuer
Template: CA, Root Certification Authority
Cert Hash(sha1): 7c 3f a7 b9 a6 b6 b1 b8 6f 91 e7 f9 28 20 a2 4f 8b 43 1f 1b
Certificate 1:
Serial Number: 4ccde129112e70aa4d17d281f3
Issuer: CN=HCL, DC=hospitalcooperative, DC=com
Subject: CN=HCL, DC=hospitalcooperative, DC=com
Certificate Template Name: CA
CA Version: V0.0
Signature matches Public Key
Root Certificate: Subject matches Issuer
Template: CA, Root Certification Authority
Cert Hash(sha1): 64 ea d6 e1 b0 6b 73 ba 37 7e 80 45 22 db 74 3d 0c a9 28 8f
** KDC Certificates for DC DENVER2003
0 KDC certs for DENVER2003
No KDC Certificate in MY store
KDC certificates: Cannot find object or property. 0x80092004 (-2146885628)
CertUtil: -DCInfo command FAILED: 0x80092004 (-2146885628)
CertUtil: Cannot find object or property.
Type = Warning
Source = KDC
Event ID = 20
The currently selected KDC certificate was once valid, but now is invalid and no suitable replacement was found. Smartcard logon may not function correctly if this problem is not remedied. Have the system administrator check on the state of the domain's public key infrastructure. The chain status is in the error data.
I have also ran this which doesnt work either. The following info is from the command.
Microsoft Windows [Version 5.2.3790]
(C) Copyright 1985-2003 Microsoft Corp.
C:\Documents and Settings\Administrator>cer
0: DENVER2003
*** Testing DC[0]: DENVER2003
** Enterprise Root Certificates for DC DENVER2003
Certificate 0:
Serial Number: 4f4bce7e9b45a28e4e9213473d
Issuer: CN=HCL Enterprise, DC=hospitalcooperative, DC=com
Subject: CN=HCL Enterprise, DC=hospitalcooperative, DC=com
Certificate Template Name: CA
CA Version: V0.0
Signature matches Public Key
Root Certificate: Subject matches Issuer
Template: CA, Root Certification Authority
Cert Hash(sha1): 7c 3f a7 b9 a6 b6 b1 b8 6f 91 e7 f9 28 20 a2 4f 8b 43 1f 1b
Certificate 1:
Serial Number: 4ccde129112e70aa4d17d281f3
Issuer: CN=HCL, DC=hospitalcooperative, DC=com
Subject: CN=HCL, DC=hospitalcooperative, DC=com
Certificate Template Name: CA
CA Version: V0.0
Signature matches Public Key
Root Certificate: Subject matches Issuer
Template: CA, Root Certification Authority
Cert Hash(sha1): 64 ea d6 e1 b0 6b 73 ba 37 7e 80 45 22 db 74 3d 0c a9 28 8f
** KDC Certificates for DC DENVER2003
0 KDC certs for DENVER2003
No KDC Certificate in MY store
KDC certificates: Cannot find object or property. 0x80092004 (-2146885628)
CertUtil: -DCInfo command FAILED: 0x80092004 (-2146885628)
CertUtil: Cannot find object or property.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Oh... I will give all them a shot then. Thanks man. I will get back to you when i run all the test. Thanks
ASKER
I tried everything that was on that web page above and no luck. All the test came out good
ASKER