?
Solved

Automatic Certificate Enrollment Failed

Posted on 2009-03-30
6
Medium Priority
?
707 Views
Last Modified: 2012-05-06
I seeing the following event in a number of our DC"s:

Event Type:      Error
Event Source:      AutoEnrollment
Event Category:      None
Event ID:      13
Date:            3/30/2009
Time:            3:02:39 AM
User:            N/A
Computer:      STERLINGPDC
Description:
Automatic certificate enrollment for local system failed to enroll for one Domain Controller certificate (0x80070005).  Access is denied.

I ran the GPUpdate.exe /force but that didn't work. Do you know why this started happening and how do I fix the problem.

Thanks for your help,
David


0
Comment
Question by:DBaldarelli
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 3
6 Comments
 
LVL 5

Expert Comment

by:gzarnick
ID: 24018096
0
 
LVL 5

Expert Comment

by:gzarnick
ID: 24018098
Run "certutil.exe -dsdel CAName"
0
 

Author Comment

by:DBaldarelli
ID: 24018144
Do I run this on the Domain Controllers showing the event or on the CA server?
0
Simplifying Server Workload Migrations

This use case outlines the migration challenges that organizations face and how the Acronis AnyData Engine supports physical-to-physical (P2P), physical-to-virtual (P2V), virtual to physical (V2P), and cross-virtual (V2V) migration scenarios to address these challenges.

 
LVL 5

Accepted Solution

by:
gzarnick earned 1000 total points
ID: 24018218
I would run it on the CA server.  

Check that out.
http://support.microsoft.com/kb/927066

It seems that a client is trying to use multiple DNS suffixes.

Also, you're answer could be within here:

http://www.eventid.net/display.asp?eventid=13&eventno=2719&source=AutoEnrollment&phase=1
0
 

Author Comment

by:DBaldarelli
ID: 24018873
Article 927066 that you sent me solved my problem. The CERTSVC_DCOM_ACCESS group was not listed for Local or Remote Access. I also added Domain Controllers to the the CERTSVC_DCOM_ACCESS group. Thank you for your help.

David
0
 

Author Closing Comment

by:DBaldarelli
ID: 31564294
Thanks for your quick response.
David
0

Featured Post

Comprehensive Backup Solutions for Microsoft

Acronis protects the complete Microsoft technology stack: Windows Server, Windows PC, laptop and Surface data; Microsoft business applications; Microsoft Hyper-V; Azure VMs; Microsoft Windows Server 2016; Microsoft Exchange 2016 and SQL Server 2016.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This may not be a text book method to resolve VSS backup issues but it seemed to have worked on few of the Windows 2003 servers we had issues while performing a Volume Shadow Copy backup. If you have issues while performing a shadow copy backup usin…
Scenerio: You have a server running Server 2003 and have applied a retail pack of Terminal Server Licenses.  You want to change servers or your server has crashed and you need to reapply the Terminal Server Licenses. When you enter the 16-digit lic…
Michael from AdRem Software explains how to view the most utilized and worst performing nodes in your network, by accessing the Top Charts view in NetCrunch network monitor (https://www.adremsoft.com/). Top Charts is a view in which you can set seve…
In this brief tutorial Pawel from AdRem Software explains how you can quickly find out which services are running on your network, or what are the IP addresses of servers responsible for each service. Software used is freeware NetCrunch Tools (https…
Suggested Courses

770 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question