Solved

CertificateServicesClient-CertEnroll events filling event logs of Terminal Servers

Posted on 2013-05-24
3
811 Views
Last Modified: 2014-10-17
We're encountering THOUSANDS of CertificateServicesClient-CertEnroll 64 & 65 events per day on our terminal servers (XenApp).

SURE, we can filter the view, but the massive number of routine events is filling the logs and kicking out more worthwhile events.  SURE, we could increase the size of the logs, but that would be a waste of space and lead to sluggish performance when viewing or filter logs.

Same issue described at http://social.technet.microsoft.com/Forums/en-US/winserversecurity/thread/c1684a47-b1e7-46ae-a365-c776203892a2/

Anyone have any thoughts on disabling these two events?
0
Comment
Question by:fcoa
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
3 Comments
 

Author Comment

by:fcoa
ID: 39195468
PS- Incase anyone wants it, here's the XML to filter these events from the log:

<QueryList>
  <Query Id="0" Path="Application">
    <Select Path="Application">*</Select>
    <Suppress Path="Application">*[System[Provider[@Name='Microsoft-Windows-CertificateServicesClient-CertEnroll'] and ( (EventID &gt;= 64 and EventID &lt;= 65) )]]</Suppress>
  </Query>
</QueryList>
0
 

Accepted Solution

by:
fcoa earned 0 total points
ID: 40128251
Bump!
0
 

Author Closing Comment

by:fcoa
ID: 40386581
No answer found.
0

Featured Post

Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The recent Microsoft changes on update philosophy for Windows pre-10 and their impact on existing WSUS implementations.
Restoring deleted objects in Active Directory has been a standard feature in Active Directory for many years, yet some admins may not know what is available.
This tutorial will walk an individual through locating and launching the BEUtility application to properly change the service account username and\or password in situation where it may be necessary or where the password has been inadvertently change…
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …

696 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question