Solved

Cannont Start the active directory certificate service on sbs 2011

Posted on 2013-01-12
9
574 Views
Last Modified: 2013-02-12
I am having trouble getting the active directory certificate service to start on our server.  When I go into services and start it, it says that it is succesful but as soon as it refreshes it is stopped again.

In the event viewer I get these errors and I think they are related to the problem.

1.Automatic certificate enrollment for local system failed (0x800706ba) The RPC server is unavailable.

2.Certificate enrollment for Local system failed to enroll for a DomainController certificate with request ID N/A from SACSVDC01.CMS.local\CMS-SACSVDC01-CA (The RPC server is unavailable. 0x800706ba (WIN32: 1722)).




I have another question already open, and if they are the same cause I appologize.  

http://www.expertsexchange.com/OS/Microsoft_Operating_Systems/Server/SBS_Small_Business_Server/Q_27991810.html
0
Comment
Question by:calmoving
  • 5
  • 2
9 Comments
 
LVL 6

Expert Comment

by:arroryn
ID: 38770091
This resolved issue contains your error - would this be of any help?

http://www.experts-exchange.com/Software/Server_Software/File_Servers/Active_Directory/Q_27272262.html
0
 

Author Comment

by:calmoving
ID: 38793957
I looked at that and was able to follow and check all of the settings down to the last task.

"Sometimes event 13 with "Server RPC is unavailable" means “access is denied”. A possible cause of this issue is that one of the following objects is not
added to the Builtin\Users group:

·
NT AUTHORITY\Authenticated Users
·
NT AUTHORITY\INTERACTIVE

I think that this should have been done is the "Active Directory Users and Computers" but I dont see anything that say NT Authority in my BUILTIN
0
 
LVL 74

Expert Comment

by:Jeffrey Kane - TechSoEasy
ID: 38821308
I wouldn't think that adding those to objects to the Builtin\Users (as members of Builtin\Users) would actually solve your problem.

Instead please review the answer provided here as it is much more likely the cause (especially the DCOM Access item):
http://social.technet.microsoft.com/Forums/hu-HU/winserversecurity/thread/7cee04eb-0759-42b9-8f5b-e2f720811565

Jeff
TechSoEasy
0
Portable, direct connect server access

The ATEN CV211 connects a laptop directly to any server allowing you instant access to perform data maintenance and local operations, for quick troubleshooting, updating, service and repair.

 

Author Comment

by:calmoving
ID: 38841731
I have checked the information on the above link, and also went to the links in that article and they dont seem to be the same as the problems I am having.  Do we have any other ideas?
0
 
LVL 74

Expert Comment

by:Jeffrey Kane - TechSoEasy
ID: 38849719
Seriously?  that is the EXACT error you said you are getting.

Jeff
TechSoEasy
0
 

Author Comment

by:calmoving
ID: 38860243
Yes I agree, but I have found similar postings already and these are not working.  I am thinking of removing the certificate authority and then reinstalling.  When the service attempts to start it cant find the certificate, my thinking is if I uninstall/reinstall this it should create a new local certificate?
0
 

Accepted Solution

by:
calmoving earned 0 total points
ID: 38864519
I was able to get this started again last night.  I removed the role of the CA authority on server, then reinstalled.  This created a new CA and the errors have gone away
0
 

Author Closing Comment

by:calmoving
ID: 38879531
I was able to solve on my own
0

Featured Post

NEW Veeam Agent for Microsoft Windows

Backup and recover physical and cloud-based servers and workstations, as well as endpoint devices that belong to remote users. Avoid downtime and data loss quickly and easily for Windows-based physical or public cloud-based workloads!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
asset tags - importance 3 55
How Can i get Two 3-User licenses of Quickbooks to work??? 6 83
Windows update hosed the internet connection to my VMs. 9 63
Sonos and 5ghz 14 46
Join Greg Farro and Ethan Banks from Packet Pushers (http://packetpushers.net/podcast/podcasts/pq-show-93-smart-network-monitoring-paessler-sponsored/) and Greg Ross from Paessler (https://www.paessler.com/prtg) for a discussion about smart network …
PRTG Network Monitor lets you monitor your bandwidth usage, so you know who is using up your bandwidth, and what they're using it for.
Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.

749 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question