troubleshooting Question

Server 2003 Event ID 13 - Automatic certificate enrollment for local system failed to enroll for one Domain Controller certificate (0x80070005). Access is denied.

Avatar of DarrinZuroff
DarrinZuroffFlag for United States of America asked on
Windows Server 2003Active Directory
9 Comments1 Solution922 ViewsLast Modified:
I have two Windows Server 2003 SP2 domain controllers, and on one of them I am seeing "Event ID 13 - Automatic certificate enrollment for local system failed to enroll for one Domain Controller certificate (0x80070005).  Access is denied." repeated over and over.

I have seen reference to adding all domain controllers to the CERTSVC_DCOM_ACCESS security group however that group does not exist.

I have also seen references to making changes using the certificate authority management console however when I try to launch it I get the message "Cannot Manage Certificate Services.  The specified service does not exist as an installed service."

I happened to check my other domain controller and it does not have the service installed either.

What can I do to fix this problem?
Join the community to see this answer!
Join our exclusive community to see this answer & millions of others.
Unlock 1 Answer and 9 Comments.
Join the Community
Learn from the best

Network and collaborate with thousands of CTOs, CISOs, and IT Pros rooting for you and your success.

Andrew Hancock - VMware vExpert
See if this solution works for you by signing up for a 7 day free trial.
Unlock 1 Answer and 9 Comments.
Try for 7 days

”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.

-Mike Kapnisakis, Warner Bros