Domain Controller Autoenrollment Fails

Domain Controller Autoenrollment Fails
Secure Home | Search | About
Login Password
Register Now! Lost Password?
 Microsoft Applications Security    Post an article   get this group's latest topics as an RSS feed add this group's latest topics to your My MSN content add this group's latest topics to your My Yahoo content add this group's latest topics to your Google content
Subject Author Date
Domain Controller Autoenrollment Fails big moose 08-04-2005
Posted by =?Utf-8?B?YmlnIG1vb3Nl?= on August 4, 2005, 10:42 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
I just installed a Win2k3 server as a second domain controller (the first
server is also running win2k3). Autoenrollment is enable in directory
services for domain controllers with the standard domain controller
certificate but autoenrollment fails with Event 13:
Automatic certificate enrollment for local system failed to enroll for one
Domain Controller Authentication certificate (0x80070005). Access is denied.

Any ideas? Thanks in advance.

Posted by =?Utf-8?B?V29uZyBUdWNrIFdhaA== on August 5, 2005, 12:12 am
If you were  Registered and logged in, you could reply and use other advanced thread options
Seems like it is a DNS naming issue.

Check on the second DC whether it can resolve the dns name of the 1st DC.

HTH.

Posted by wbranscombe on September 30, 2005, 10:48 am
If you were  Registered and logged in, you could reply and use other advanced thread options

We had to add the "domain controllers" group to the
"CERTSVC_DCOM_ACCESS" group
that was apparently added by 2k3 sp1.

our environment:
domain - 2k3 std. sp1,
top function level, upgraded in place from 2k
CERTSVC_DCOM_ACCESS had dom users
and dom computers

Hope this helps,
Wayne


--
wbranscombe
------------------------------------------------------------------------
wbranscombe's Profile: http://www.64bit-world.com/forums/member.php?u=1392
View
this thread: http://www.64bit-world.com/forums/showthread.php?t=6270


Similar ThreadsPosted
Domain Controller Security August 7, 2007, 12:38 pm
Constant Ping From Domain Controller May 19, 2006, 11:52 am
3rd party CA's CRL cache in domain controller? October 30, 2007, 10:01 am
Permissions needed to install applications on a domain controller September 29, 2005, 12:00 pm
NTLM Authentication, Part Server / Domain Controller October 7, 2008, 11:43 am
Microsoft PKI problem with domain controllers (autoenrollment) August 14, 2007, 4:53 am
AutoEnrollment June 6, 2006, 4:56 pm
CA Autoenrollment November 1, 2006, 3:37 pm
Re: Certificate Autoenrollment June 14, 2005, 4:20 pm
Question on autoenrollment process with revoked certificate. April 1, 2007, 4:01 am

The site map in XML format XML site map

Contact Us | Privacy Policy