?
Solved

Certificate Services client auto-enrollment Event ID 6

Posted on 2013-12-11
4
Medium Priority
?
5,183 Views
Last Modified: 2013-12-23
This is a RODC MS Standard 2008 R2 server.
The error:
Automatic certificate enrollment for domain\user failed (0x8007003a) The specified server cannot perform the requested operation.
This is different than the Event ID 6 for RPC availability.

I have checked the certs and they appear fine but not sure if I am missing something.

Any help would be great because it is the RODC in my DMZ so many services outside rely on it for auth.

Kry
0
Comment
Question by:kryanC
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
4 Comments
 
LVL 37

Expert Comment

by:Mahesh
ID: 39712248
For auto-enrollment check that the certificate template is used by a CA and that the CA service is running on this machine and reachable via RPC
Just telnet CA server from RODC on TCP 135 and check if it succeed ?
Also ensure that High TCP ports are opened from RODC to CA server (1024-656535 or 49152-65535 if CA server is 2008 and above)

http://support.microsoft.com/kb/832017#method4

Mahesh
0
 

Author Comment

by:kryanC
ID: 39724105
Thanks, telnet was good and ports are opened. Not sure but thought about deleting 509 certs in registry. Thoughts?

Kry
0
 
LVL 37

Accepted Solution

by:
Mahesh earned 1500 total points
ID: 39725828
Not sure why you require certificate on RODC ?

Anyways, you can directly delete certificate from Certificate Personnel store on RODC

Also you can request certificate for user manually through Certificate MMC console \ personnel certificates on RODC

Just ensure that you have root ca certificate installed on RODC in Trusted root certification authorities

Mahesh
0
 

Author Closing Comment

by:kryanC
ID: 39736336
Thanks that has cleared up the issues.
0

Featured Post

What is SQL Server and how does it work?

The purpose of this paper is to provide you background on SQL Server. It’s your self-study guide for learning fundamentals. It includes both the history of SQL and its technical basics. Concepts and definitions will form the solid foundation of your future DBA expertise.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Did you know that more than 4 billion data records have been recorded as lost or stolen since 2013? It was a staggering number brought to our attention during last week’s ManageEngine webinar, where attendees received a comprehensive look at the ma…
In the absence of a fully-fledged GPO Management product like AGPM, the script in this article will provide you with a simple way to watch the domain (or a select OU) for GPOs changes and automatically take backups when policies are added, removed o…
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …
Are you ready to implement Active Directory best practices without reading 300+ pages? You're in luck. In this webinar hosted by Skyport Systems, you gain insight into Microsoft's latest comprehensive guide, with tips on the best and easiest way…
Suggested Courses

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question