Re: Exchange server connectivity

From: Roger Crawford (rcrawford_at_nospam.scci.com)
Date: 05/06/04

• Next message: JC: "Change name of computers"
• Previous message: peter kayser: "Re: SBS-Backup with wrong destination"
• In reply to: Tom Jermy: "Exchange server connectivity"
• Messages sorted by: [ date ] [ thread ]

Date: Thu, 6 May 2004 06:12:04 -0500

You might check this out

The following Event ID 15 error entries are logged at 8-hour intervals in
the Application event log:

Event Type: Error
Event Source: AutoEnrollment
Event Category: None
Event ID: 15
Date: date
Time: time
User: N/A
Computer: computer name
Description: Automatic certificate enrollment for local system failed to
contact the active directory (0x8007054b). The specified domain either does
not exist or could not be contacted. Enrollment will not be performed.
CAUSE
This behavior can occur if the Autoenrollment feature cannot reach an Active
Directory domain controller. In a Microsoft Windows NT 4.0 domain, Active
Directory is not available, so Autoenrollment cannot work. In an Active
Directory domain with Microsoft Windows 2000 or later domain controllers,
the problem can be caused by a DNS name resolution or network connectivity
issue.
RESOLUTION
For a Windows XP-based or a Windows Server 2003-based computer that is
joined to a Windows NT 4.0 domain, to disable Autoenrollment in the Local
Group Policy, follow these steps on the local workstation:
  1.. Click Start, click Run, type gpedit.msc, and then press ENTER.
  2.. In the left pane, expand Computer Configuration, expand Windows
Settings, expand Security Settings, and then expand Public Key Policies
  3.. Double-click Autoenrollment Settings.
  4.. Click Do not enroll certificates automatically.
  5.. Click OK.
  6.. Repeat steps 2 through 5, but in step 2, expand User Configuration,
expand Windows Settings, expand Security Settings, and then expand Public
Key Policies.
  7.. Close the Group Policy window.
For a computer that is a member of a Windows 2000 or later Active Directory
domain, make sure that the domain member has network connectivity with at
least one domain controller.

After you have determined that you have good Internet Protocol (IP)
connectivity between the member and a domain controller, correct the DNS
address in the IP properties of the workstation:
  1.. Start the Network Connections tool in Control Panel.
  2.. Right-click Local Area Connection, and then click Properties.
  3.. Click Internet Protocol (TCP/IP), and then click Properties.
  4.. Type the correct DNS address in the Preferred DNS server box.
  5.. Click OK.
Roger Crawford
HTS

"Tom Jermy" <tomjermy@hotmail.com> wrote in message
news:932501c43352$668a6fe0$a001280a@phx.gbl...
> Hello,
>
> We are experiencing intermitent problems with exchange
> server connectivity; the following message is from the
> application eventwvr log:
>
> Automatic certificate enrollment for local system failed
> to download certificates for ROOT store from
> CN=Configuration,DC=wredmilesons,DC=local ldap://%
> s/CN=Certification Authorities,CN=Public Key
> Services,CN=Services,%s?cACertificate?one?
> objectCategory=certificationAuthority (0x8007006e). The
> system cannot open the device or file specified.
>
>
> For more information, see Help and Support Center at
> http://go.microsoft.com/fwlink/events.asp.
>
> Please advise.
>
> Thanks,
> Tom Jermy

• Next message: JC: "Change name of computers"
• Previous message: peter kayser: "Re: SBS-Backup with wrong destination"
• In reply to: Tom Jermy: "Exchange server connectivity"
• Messages sorted by: [ date ] [ thread ]

• Windows
• Science
• Usenet

• Archive
• About
• Privacy
• Search
• Imprint