?
Solved

Crypt32 Error in Application Event Log

Posted on 2011-03-03
4
Medium Priority
?
1,069 Views
Last Modified: 2012-05-11
In the Application log of a Windows Server 2003 Standard Edition Service Pack 2 server we continually get the error:

Failed auto update retrieval of third-party root list sequence number from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> with error: This operation returned because the timeout period expired.


For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.

We have Symantec End Point Protection so I tried this fix: http://www.symantec.com/business/support/index?page=content&id=TECH106277&locale=en_US and it did not work, even after a reboot.

I also updated Internet Exporer 6 to Internet Explorer 7.

- I see you can uninstall Root Certificates Add/Remove Windows Components but I would like to keep the configuration the same. This seems like a workaround and not a fix.
0
Comment
Question by:AIRITServiceDesk
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
4 Comments
 
LVL 11

Expert Comment

by:Tasmant
ID: 35027007
- do you use proxy to access Internet?
- in most case this happen when your servers cannot connect to Microsoft to retrieve some updates (especially the crypt32 process).
0
 

Author Comment

by:AIRITServiceDesk
ID: 35028177
We have an Proxy (ISA) setup for our client workstations but not on the server in question. We have several domain controllers in the same subnet and only one of them is getting generating this error. It looks like it started occuring when Symantec End Point Protection was installed based on the timestamps in the Event Log.
0
 
LVL 11

Accepted Solution

by:
Tasmant earned 2000 total points
ID: 35028496
Personnaly i've often encounter this issue and the only way we found was to manually install root certificate update or as you suggested to remove the Root Certificates in Add/Remove programs.
Are your servers getting updates from WSUS? Because this could help to ensure your root certificates are up to date.
If you suspect Symantec (and i think you're right), then you could maybe review the settings of this
http://social.technet.microsoft.com/Forums/en-US/winserverwsus/thread/5375b668-54c3-484f-acbb-19814bd43652/

Else i've found many information about this on Symantec:
http://www.symantec.com/connect/forums/crypt32-errors-event-viewer-after-sep-110-installation
And some solution too with ISA

Maybe have you configured proxy autodiscovery with ISA (WPAD) and probably with DHCP, so all your clients discover this information. But if DHCP traffic between your DC and the server is unallowed by SEP, then unable to discover proxy and fails.
Review this, it's for wsus but it's interesting to understand what happens:
http://support.microsoft.com/kb/900935/en-us
0
 

Author Comment

by:AIRITServiceDesk
ID: 35147400
- We do not use a Proxy on our servers.
- As soon as Symantec End Point Protection is uninstalled, the errors is stops.
- As soon as Symantec End Point Protection is installed, the error starts occuring every 10 minutes.
- I spoke to Symantec Technicial Support and the only reccomendations they had were the ones I found in the following Knowedge Base articles:

        - Symantec KB article:
          http://www.symantec.com/business/support/indexpage=content&id=TECH106277)
        - Microsoft KB
          http://support.microsoft.com/kb/317541/EN-US
- We have uninstalled Root Certificates from Add/Remove windows Components
- You cannot apply Root Certificate Updates to Servers, via WSUS, because the Root Certificate Updates "only apply to Windows XP workstations" based on WSUS.
0

Featured Post

Want to be a Web Developer? Get Certified Today!

Enroll in the Certified Web Development Professional course package to learn HTML, Javascript, and PHP. Build a solid foundation to work toward your dream job!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

by Batuhan Cetin Within the dynamic life of an IT administrator, we hold many information in our minds like user names, passwords, IDs, phone numbers, incomes, service tags, bills and the order from our wives to buy milk when coming back to home.…
This may not be a text book method to resolve VSS backup issues but it seemed to have worked on few of the Windows 2003 servers we had issues while performing a Volume Shadow Copy backup. If you have issues while performing a shadow copy backup usin…
In this video we outline the Physical Segments view of NetCrunch network monitor. By following this brief how-to video, you will be able to learn how NetCrunch visualizes your network, how granular is the information collected, as well as where to f…
How to fix incompatible JVM issue while installing Eclipse While installing Eclipse in windows, got one error like above and unable to proceed with the installation. This video describes how to successfully install Eclipse. How to solve incompa…
Suggested Courses

801 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question