RE: HELP: AD certificate corruption after domain restore?
From: Yves (Yves_at_discussions.microsoft.com)
Date: 10/20/04
- Next message: Yves: "RE: repost: HELP: AD certificate corruption after domain restore?"
- Previous message: Dmitri Gavrilov [MSFT]: "Re: ADAm password policies"
- In reply to: Al Mulnick: "HELP: AD certificate corruption after domain restore?"
- Next in thread: Yves: "RE: repost: HELP: AD certificate corruption after domain restore?"
- Reply: Yves: "RE: repost: HELP: AD certificate corruption after domain restore?"
- Messages sorted by: [ date ] [ thread ]
Date: Wed, 20 Oct 2004 01:23:02 -0700
"Al Mulnick" wrote:
> Probably more like a permission issue. What else is in
> the event logs?
>
> Al
Hi Al,
Thanks for the answer. I got some strange behaviour:
- on the certificate services server (which is one of my DC's) I do not see
much errors at all, besides the one I have shown and one more event
KDC warning event id 20:
The currently selected KDC certificate was once valid, but now is invalid
and no suitable replacement was found. Smartcard logon may not function
correctly if this problem is not remedied. Have the system administrator
check on the state of the domain's public key infrastructure. The chain
status is in the error data.
- I tried to publish the certificates manually to my server store, but this
did not help.
- netdiag and dcdiag seem OK
- nltest reports some stranger things:
nltest /SC_Query:elec.tw.ad.vub.ac.
be
I_NetLogonControl failed: Status = 1355 0x54b ERROR_NO_SUCH_DOMAIN
- Next message: Yves: "RE: repost: HELP: AD certificate corruption after domain restore?"
- Previous message: Dmitri Gavrilov [MSFT]: "Re: ADAm password policies"
- In reply to: Al Mulnick: "HELP: AD certificate corruption after domain restore?"
- Next in thread: Yves: "RE: repost: HELP: AD certificate corruption after domain restore?"
- Reply: Yves: "RE: repost: HELP: AD certificate corruption after domain restore?"
- Messages sorted by: [ date ] [ thread ]
