|
Posted by S. Pidgorny on March 15, 2006, 3:34 am
If you were Registered and logged in, you could reply and use other advanced thread options
Hi Franz,
Searching KB for "0x80070005" gives whole heap of problems and solutions -
not exactly like yours but very similar.
I assume that certificate services are running. The problem is most likely
with delegation - check security logs on the IIS and CA to find out how the
account is impersonated, and if the CA client has permissions to the
certificate template. There must be info in the event log on the CA about
the rejected enroillment as well.
Found the best KB for your situation -
http://support.microsoft.com/kb/239452
--
Svyatoslav Pidgorny, MS MVP - Security, MCSE
-= F1 is the key =-
> Have a problem that many others have, but haven't found any solution in KB
> or another NG Post. There are hints that something has to be ajusted with
> dcomcfg, but not any hint what has to be changed.
>
> - Have an enterprise CA on a Windows 2003 SP1 enterprise edition member
> server
> - Have the Certificate Web Enrollment Website installed on another Windows
> 2003 SP1 member server
> - Have enabled "trust this computer for delegation" on the computer with
> the
> Certificate Enrollment Website according KB 239452
> - Rebooted both member servers
> - Have tried with either Windows and Basic authentication
>
> When requesting a certificate, after the Website shortly displays
> "processing request", the following error appears:
>
> Error
>
>
> Your request failed. An error occurred while the server was processing
> your
> request.
>
> Contact your administrator for further assistance.
>
>
>
> Request Mode:
> newreq - New Request
> Disposition:
> (never set)
> Disposition message:
> (none)
> Result:
> Access is denied. 0x80070005 (WIN32: 5)
> COM Error Info:
> CCertRequest::Submit Access is denied. 0x80070005 (WIN32: 5)
> LastStatus:
> The operation completed successfully. 0x0 (WIN32: 0)
> Suggested Cause:
> The Certification Authority Service has not been started.
>
> Thank you all in advance for any suggestions.
> Franz
>
| 
XML site map