Certificate Request Problem
- From: "spm" <nospam@xxxxxxxxxxxxxxxxxx>
- Date: Mon, 01 May 2006 15:34:42 -0700
I am attempting to implement L2TP VPN services on our SBS2K3 network,
but having difficulty requesting computer certificates on the clients.
So far, I have successfully installed Certificate Services on the
server and created an enteprise root CA, and created a domain
controller certificate. On each client I have created an MMC console
for both Certificates (Local Computer) and Certificates (Current User).
Whenever I attempt to create a new computer certificate on a client, I
encounter the error "The certificate request failed. The RPC server is
unavailable". This is accompanied by a 10009 event in the client event
log, stating "DCOM was unable to communicate with the computer
<servername>.<domain> using any of the configured protocols".
On the server, I can see ISA 2004 reporting connections opening and
closing apparently normally, so I suspect it is not a firewall issue.
However, I see 3 events in the server's event log corresponding to each
certificate request, all of which are ID 537 describing a logon failure
for the client computer with:
Reason: "An error occurred during logon"
User name: <computer name>
Domain: <domain name>
Logon Type: 3
Logon Process: Kerberos
Authentication Package: Kerberos
Workstation Name: -
Status Code: 0xC00002EE
Substatus Code: 0x0
Can anyone shed any light on why this is happening, and how to resolve
it?
Strangely, I can request a *user* certificate without problem on any
client.
Server is SBS2K3 + SP1, with ISA 2004 + SP2.
--
Regards,
Steve.
.
- Follow-Ups:
- Re: Certificate Request Problem
- From: Owen Williams
- Re: Certificate Request Problem
- Prev by Date: RE: Check users emails/Internet access
- Next by Date: Frequent Event 529 Second Post
- Previous by thread: RE: Re-Route email
- Next by thread: Re: Certificate Request Problem
- Index(es):
Relevant Pages
|
