Link to home
Create AccountLog in
Avatar of rdefino
rdefinoFlag for United States of America

asked on

Getting DNS error on out Certificate Authority server

We have a certificate authority the we issue certificates from. I'm seeing tons of these DNS errors but have no idea what to look at to fix them.


Any thoughts?
error.png
Avatar of Paul MacDonald
Paul MacDonald
Flag of United States of America image

This can happen if the client doesn't have correct DNS name information in AD, or if the certifciate server has a non-AD DNS server specified.  In both cases, the certificate server is trying to verify the machine belongs to the domain and in both cases it would fail to do so.  There may be other scenarios that cause this problem as well.
Avatar of rdefino

ASKER

The DNS looks good on the local server.

I see in the screen shot the message "denied by policy"

what's that mean?
ASKER CERTIFIED SOLUTION
Avatar of Paul MacDonald
Paul MacDonald
Flag of United States of America image

Link to home
membership
Create a free account to see this answer
Signing up is free and takes 30 seconds. No credit card required.
See answer