<div>
You need to add the DC to the CERTSVC_DCOM_ACCESS group
</div>


You need to add the DC to the CERTSVC_DCOM_ACCESS group

<div>
already done, but the error is still there.
</div>


already done, but the error is still there.

<div>
Have you rebooted the server after adding to group?
</div>


Have you rebooted the server after adding to group?

<div>
<div class="content wysiwyg-content">
I am recieving the following error on one of our domain controllers &quot;Automatic certificate enrollment for local system failed to enroll for one Domain Controller certificate (0x80070005). &nbsp;Access is denied.&quot; . As well if i try to open the Domain Security Policy, or Domain Controller security policy &nbsp;i get the following Error Message.&quot;Failed to open group policy object. You may not have approperiate Rights&quot;. Any idea about this error and how to resolve them. i have another domain controller for the same domain and these errors do not show there.
</div>
</div>


I am recieving the following error on one of our domain controllers "Automatic certificate enrollment for local system failed to enroll for one Domain Controller certificate (0x80070005).  Access is denied." . As well if i try to open the Domain Security Policy, or Domain Controller security policy  i get the following Error Message."Failed to open group policy object. You may not have approperiate Rights". Any idea about this error and how to resolve them. i have another domain controller for the same domain and these errors do not show there.

AutoEnrollment

Windows Server 2003 was based on Windows XP and was released in four editions: Web, Standard, Enterprise and Datacenter. It also had derivative versions for clusters, storage and Microsoft’s Small Business Server. Important upgrades included integrating Internet Information Services (IIS), improvements to Active Directory (AD) and Group Policy (GP), and the migration to Automated System Recovery (ASR).