| Event Source: | Microsoft-Windows-CertificationAuthority |
| Event ID: | 52 (0x34) |
| Event log: | Application |
| Event type: | Information |
| Event text (English): | Active Directory Certificate Services issued a certificate for request %1 for %2. Additional information: %3 |
| Event text (German): | A certificate was issued for request %1 of %2. More information: %3 |
Parameter
The parameters contained in the event text are filled with the following fields:
- %1: RequestId (win:UnicodeString)
- %2: SubjectName (win:UnicodeString)
- %3: AdditionalInformation (win:UnicodeString)
Example events
Active Directory Certificate Services issued a certificate for request 235 for CN=DC01.intra.adcslabor.de. Additional information: Issued
Active Directory Certificate Services issued a certificate for request 6 for CN=Rudi Ratlos. Additional information: Issued The certificate validity period will be shorter than the ADCSLaborBenutzer2 Certificate Template specifies, because the template validity period is longer than the maximum certificate validity period allowed by the CA. Consider renewing the CA certificate, reducing the template validity period, or increasing the registry validity period.
Description
Do you know TameMyCerts? TameMyCerts is an add-on for the Microsoft certification authority (Active Directory Certificate Services). It extends the function of the certification authority and enables the Application of regulationsto realize the secure automation of certificate issuance. TameMyCerts is unique in the Microsoft ecosystem, has already proven itself in countless companies around the world and is available under a free license. It can downloaded via GitHub and can be used free of charge. Professional maintenance is also offered.
The event outputs information about a certificate issued by the certification authority. It is part of regular certification authority operation and can be safely ignored.
The event occurs only when the Logging level has been set to 4 (CERTLOG_VERBOSE) or higher for the event log of the relevant certification authority.
The event does not occur when a Certificate Authority Exchange (CA Exchange) certificate is generated.
The certificate validity period will be shorter than the ADCSLaborBenutzer2 Certificate Template specifies, because the template validity period is longer than the maximum certificate validity period allowed by the CA. Consider renewing the CA certificate, reducing the template validity period, or increasing the registry validity period.
If this message appears in the event, it is an indication that the certificate authority certificate must be renewed because the full validity period defined in the certificate template for certificates can no longer be achieved.
See also Event no. 97.
Safety assessment
The security assessment is based on the three dimensions of confidentiality, integrity and availability.
No description has been written for this yet.
Microsoft rating
Microsoft evaluates this event in the Securing Public Key Infrastructure (PKI) Whitepaper with a severity score of "Low".
Related links:
- Overview of Windows events generated by the certification authority
- Overview of audit events generated by the Certification Authority
- Configure logging level for the certification authority event log.
External sources
- Securing Public Key Infrastructure (PKI) (Microsoft)
English 
Deutsch
One thought on “Details zum Ereignis mit ID 52 der Quelle Microsoft-Windows-CertificationAuthority”
Comments are closed.