Automatic certificate enrollment for local system failed to enroll for one Domain Controller certificate


I have a windows 2003 SBS machine that appears to keep dropping out. The client machines are running a database application from the server and they lose connectivity numerous times through out the day. I have been remotely connected to both the server and a client machine when this occurs. The client machine can ping the server and visa versa. The client machine can also get on the web, the client machine fails to do an nslookup to its primary dns which is set as the server. The client machine gets a popup that says working offline.

I can see an error event id 13 on the server Automatic certificate enrollment for local system failed to enroll for one Domain Controller certificate (0x80040154).  Class not registered
I have run all the latest windows updates.

Can anyone suggest a fix.

Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Sid_FAuthor Commented:
I have tried the following post:

It sounds like the Certificate Authority you have does not have Domain Controller Certificates enabled.

If you open up the Certificate Authority MMC and target your CA, under Certificate Templates, there should be one that says "Domain Controller". You can add it by right clicking the Cert. Template folder and doing New>Template to Issue
However I receive "cannot manage certificate services. The specified service does not exist as an instalable service 0x424 win32:1060
Jeffrey Kane - TechSoEasyPrincipal ConsultantCommented:
You shouldn't even have certificate services installed on an SBS.

The 0x80040154 error would indicate that perhaps there is a stale certificate on the server.  Was this server migrated?

Were the workstations joined to the domain using http://<servername>/connectcomputer?
(if not rejoin them following

Then... I would wonder about DNS.  Please post a COMPLETE ipconfig /all from both server and a sample workstation.



Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today

From novice to tech pro — start learning today.