Improve company productivity with a Business Account.Sign Up

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 720
  • Last Modified:

Automatic Certificate Enrollment Failed

I seeing the following event in a number of our DC"s:

Event Type:      Error
Event Source:      AutoEnrollment
Event Category:      None
Event ID:      13
Date:            3/30/2009
Time:            3:02:39 AM
User:            N/A
Computer:      STERLINGPDC
Description:
Automatic certificate enrollment for local system failed to enroll for one Domain Controller certificate (0x80070005).  Access is denied.

I ran the GPUpdate.exe /force but that didn't work. Do you know why this started happening and how do I fix the problem.

Thanks for your help,
David


0
DBaldarelli
Asked:
DBaldarelli
  • 3
  • 3
1 Solution
 
gzarnickCommented:
0
 
gzarnickCommented:
Run "certutil.exe -dsdel CAName"
0
 
DBaldarelliAuthor Commented:
Do I run this on the Domain Controllers showing the event or on the CA server?
0
Free Tool: ZipGrep

ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.

One of a set of tools we're offering as a way to say thank you for being a part of the community.

 
gzarnickCommented:
I would run it on the CA server.  

Check that out.
http://support.microsoft.com/kb/927066

It seems that a client is trying to use multiple DNS suffixes.

Also, you're answer could be within here:

http://www.eventid.net/display.asp?eventid=13&eventno=2719&source=AutoEnrollment&phase=1
0
 
DBaldarelliAuthor Commented:
Article 927066 that you sent me solved my problem. The CERTSVC_DCOM_ACCESS group was not listed for Local or Remote Access. I also added Domain Controllers to the the CERTSVC_DCOM_ACCESS group. Thank you for your help.

David
0
 
DBaldarelliAuthor Commented:
Thanks for your quick response.
David
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

  • 3
  • 3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now