Solved

CertificateServicesClient-CertEnroll events filling event logs of Terminal Servers

Posted on 2013-05-24
3
731 Views
Last Modified: 2014-10-17
We're encountering THOUSANDS of CertificateServicesClient-CertEnroll 64 & 65 events per day on our terminal servers (XenApp).

SURE, we can filter the view, but the massive number of routine events is filling the logs and kicking out more worthwhile events.  SURE, we could increase the size of the logs, but that would be a waste of space and lead to sluggish performance when viewing or filter logs.

Same issue described at http://social.technet.microsoft.com/Forums/en-US/winserversecurity/thread/c1684a47-b1e7-46ae-a365-c776203892a2/

Anyone have any thoughts on disabling these two events?
0
Comment
Question by:fcoa
  • 3
3 Comments
 

Author Comment

by:fcoa
ID: 39195468
PS- Incase anyone wants it, here's the XML to filter these events from the log:

<QueryList>
  <Query Id="0" Path="Application">
    <Select Path="Application">*</Select>
    <Suppress Path="Application">*[System[Provider[@Name='Microsoft-Windows-CertificateServicesClient-CertEnroll'] and ( (EventID &gt;= 64 and EventID &lt;= 65) )]]</Suppress>
  </Query>
</QueryList>
0
 

Accepted Solution

by:
fcoa earned 0 total points
ID: 40128251
Bump!
0
 

Author Closing Comment

by:fcoa
ID: 40386581
No answer found.
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

To effectively work with Diskpart on a Server Core, it is necessary to write some small batch script's, because you can't execute diskpart in a remote powershell session. To get startet, place the Diskpart batch script's into a share on your loca…
Redirected folders in a windows domain can be quite useful for a number of reasons, one of them being that with redirected application data, you can give users more seamless experience when logging into different workstations.  For example, if a use…
This tutorial will give a short introduction and overview of Backup Exec 2012 and how to navigate and perform basic functions. Click on the Backup Exec button in the upper left corner. From here, are global settings for the application such as conne…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…

809 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question