Re: Autoenrollment error

Tech-Archive recommends: Repair Windows Errors & Optimize Windows Performance

I don't know how or why, but after having this error for EVER, We finally got:

Event Type: Information
Event Source: AutoEnrollment
Event Category: None
Event ID: 19
Date: 2/2/2006
Time: 3:28:48 AM
User: N/A
Computer: xxxxxxxxxxx
Description:
Automatic certificate enrollment for local system successfully received one Domain Controller certificate from certificate authority xx-AD_CA on xxxxx.ad.xxxxx.edu.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.

The only change I made was to make the Domain Controller group to the CERTSVC_DCOM_ACCESS and waited a couple days. Certainly interesting..

Thanks!


Matthew Clark wrote:
I posted this in General with no response so I thought I might try here as well...

I have a 2003 server that keeps getting the error -

Event Type: Error
Event Source: AutoEnrollment
Event Category: None
Event ID: 13
Date: 2/1/2006
Time: 11:28:51 AM
User: N/A
Computer: xxxxxxx
Description:
Automatic certificate enrollment for local system failed to enroll for one
Domain Controller certificate (0x80070005). Access is denied.


For more information, see Help and Support Center at
http://go.microsoft.com/fwlink/events.asp.

I read in a couple places to try "certutil -setreg SetupStatus
-SETUP_DCOM_SECURITY_UPDATED_FLAG". I tried that and it produced the error -

CertUtil: -setreg command FAILED: 0x80070002 (WIN32: 2)
CertUtil: The system cannot find the file specified.

Does anyone have a suggestion on where to go from here?

Thanks!
.

Quantcast