?
Solved

CertificateServicesClient-CertEnroll events filling event logs of Terminal Servers

Posted on 2013-05-24
3
Medium Priority
?
863 Views
Last Modified: 2014-10-17
We're encountering THOUSANDS of CertificateServicesClient-CertEnroll 64 & 65 events per day on our terminal servers (XenApp).

SURE, we can filter the view, but the massive number of routine events is filling the logs and kicking out more worthwhile events.  SURE, we could increase the size of the logs, but that would be a waste of space and lead to sluggish performance when viewing or filter logs.

Same issue described at http://social.technet.microsoft.com/Forums/en-US/winserversecurity/thread/c1684a47-b1e7-46ae-a365-c776203892a2/

Anyone have any thoughts on disabling these two events?
0
Comment
Question by:fcoa
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
3 Comments
 

Author Comment

by:fcoa
ID: 39195468
PS- Incase anyone wants it, here's the XML to filter these events from the log:

<QueryList>
  <Query Id="0" Path="Application">
    <Select Path="Application">*</Select>
    <Suppress Path="Application">*[System[Provider[@Name='Microsoft-Windows-CertificateServicesClient-CertEnroll'] and ( (EventID &gt;= 64 and EventID &lt;= 65) )]]</Suppress>
  </Query>
</QueryList>
0
 

Accepted Solution

by:
fcoa earned 0 total points
ID: 40128251
Bump!
0
 

Author Closing Comment

by:fcoa
ID: 40386581
No answer found.
0

Featured Post

Visualize your virtual and backup environments

Create well-organized and polished visualizations of your virtual and backup environments when planning VMware vSphere, Microsoft Hyper-V or Veeam deployments. It helps you to gain better visibility and valuable business insights.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The recent Microsoft changes on update philosophy for Windows pre-10 and their impact on existing WSUS implementations.
I was prompted to write this article after the recent World-Wide Ransomware outbreak. For years now, System Administrators around the world have used the excuse of "Waiting a Bit" before applying Security Patch Updates. This type of reasoning to me …
This tutorial will give a short introduction and overview of Backup Exec 2012 and how to navigate and perform basic functions. Click on the Backup Exec button in the upper left corner. From here, are global settings for the application such as conne…
This tutorial will walk an individual through the steps necessary to install and configure the Windows Server Backup Utility. Directly connect an external storage device such as a USB drive, or CD\DVD burner: If the device is a USB drive, ensure i…
Suggested Courses

764 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question