troubleshooting Question

Getting an access denied message when trying to manually publish a CRL in AD CS

Avatar of ndalmolin_13
ndalmolin_13Flag for United States of America asked on
* Public Key Infrastructure (PKI)Active Directory
2 Comments1 Solution233 ViewsLast Modified:
Hello Certificate Experts,

I’m having an issue publishing the CRL from my enterprise certificate authority.  When I go to manually publish the CRL, I get the following access denied message:
CRL-Access-Denied.png
The configurations on the enterprise CA for the CRL distribution point are as follows:
CRL-Distribution-Point-Config.png
The enterprise certificate authority also hosts the web page for the CRL.  The folder for the web page is on the D drive of the server and it is named pki.  The share and NTFS permissions for this folder are as follows:

Share permissions:
PKI-Share-Permissions.png

NTFS Permissions:
pki-ntfs-permissions.png

Everything I have read states that the computer account of the CA needs to have the permissions listed above.  The computer name is XXXX-SUBCA1.  I'm hoping another set of eyes can see what I'm missing.

Thanks for your help.
Nick
ASKER CERTIFIED SOLUTION
Abhilash Pappiyil
Technical Lead - Network Support

Our community of experts have been thoroughly vetted for their expertise and industry experience.

Join our community to see this answer!
Unlock 1 Answer and 2 Comments.
Start Free Trial
Learn from the best

Network and collaborate with thousands of CTOs, CISOs, and IT Pros rooting for you and your success.

Andrew Hancock - VMware vExpert
See if this solution works for you by signing up for a 7 day free trial.
Unlock 1 Answer and 2 Comments.
Try for 7 days

”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.

-Mike Kapnisakis, Warner Bros