Event Source: | Microsoft-Windows-CertificateServicesClient-AutoEnrollment |
Event ID: | 6 (0x40000006) |
Event log: | Application |
Event type: | Error |
Event text (English): | Automatic certificate enrollment for %1 failed (%2) %3. |
Event text (German): | An error occurred during automatic certificate registration for %1 (%2) %3. |
Parameter
The parameters contained in the event text are filled with the following fields:
- %1: Context (win:UnicodeString)
- %2: ErrorCode (win:UnicodeString)
- %3: ErrorMsg (win:UnicodeString)
Example events
Automatic certificate enrollment for local system failed (0x8007054b) The specified domain either does not exist or could not be contacted.
Automatic certificate enrollment for local system failed (0x800706ba) The RPC server is unavailable.
Automatic certificate enrollment for local system failed (0x800b0101) A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
Automatic certificate enrollment for local system failed (0x80070576) There is a time and/or date difference between the client and server.
Description
Do you know TameMyCerts? TameMyCerts is an add-on for the Microsoft certification authority (Active Directory Certificate Services). It extends the function of the certification authority and enables the Application of regulationsto realize the secure automation of certificate issuance. TameMyCerts is unique in the Microsoft ecosystem, has already proven itself in countless companies around the world and is available under a free license. It can downloaded via GitHub and can be used free of charge. Professional maintenance is also offered.
Error code 0x800706ba (The RPC server is unavailable)
Possible causes for this error message are:
- The certificate authority server is switched off.
- The certification authority service on the certification authority is not running.
- The client cannot connect to the certificate authority because a firewall prevents the connection. See also article "Firewall rules required for Active Directory Certificate Services„.
- The DNS record for the certification authority points to the wrong server.
- The requesting account does not have the "Access this Computer from the network" permission on the certificate authority.
See also Event with ID 13 of source Microsoft-Windows-CertificateServicesClient-CertEnroll.
Error Code 0x800b0101 (A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file)
May occur if the certification authority certificate of a certification authority for which autoenrollment is to be performed has expired and has not been renewed.
Safety assessment
The security assessment is based on the three dimensions of confidentiality, integrity and availability.
No description has been written for this yet.
2 thoughts on “Details zum Ereignis mit ID 6 der Quelle Microsoft-Windows-CertificateServicesClient-AutoEnrollment”
Comments are closed.