Details of the event with ID 17 of the source Microsoft-Windows-CertificateServicesClient-CertEnroll

Author Uwe GradeneggerPosted on Categories Events, Certificate usageTags ,
Event Source:Microsoft-Windows-CertificateServicesClient-CertEnroll
Event ID:17 (0x825A0011)
Event log:Application
Event type:Warning
Event text (English):Certificate enrollment for %1 failed to enroll for a %2 certificate from certification authority %3 (%4). Another certification authority will be contacted.
Event text (German):The registration for %1 for a certificate %2 from the certification authority %3 (%4) could not be performed. Another certification authority will be contacted.

Parameter

The parameters contained in the event text are filled with the following fields:

  • %1: Context (win:UnicodeString)
  • %2: TemplateName (win:UnicodeString)
  • %3: CA (win:UnicodeString)
  • %4: ErrorCode (win:UnicodeString)

Example events

Certificate enrollment for Local system failed to enroll for a ADCSLaborWebServer certificate from certification authority CA03.intra.adcslabor.de\ADCS Labor Issuing CA 2 (The RPC server is unavailable. 0x800706ba (WIN32: 1722 RPC_S_SERVER_UNAVAILABLE)). Another certification authority will be contacted.

Description

Do you know TameMyCerts? TameMyCerts is an add-on for the Microsoft certification authority (Active Directory Certificate Services). It extends the function of the certification authority and enables the Application of regulationsto realize the secure automation of certificate issuance. TameMyCerts is unique in the Microsoft ecosystem, has already proven itself in countless companies around the world and is available under a free license. It can downloaded via GitHub and can be used free of charge. Professional maintenance is also offered.

Indicates that a certificate request from the mentioned certification authority is not possible and (if available) another certification authority offering the same certificate template will be contacted.

Error code 0x800706ba (The RPC server is unavailable)

Possible causes for this error message are:

  • The certificate authority server is switched off.
  • The certification authority service on the certification authority is not running.
  • The client cannot connect to the certificate authority because a firewall prevents the connection. See also article "Firewall rules required for Active Directory Certificate Services„.
  • The DNS record for the certification authority points to the wrong server.
  • The requesting account does not have the "Access this Computer from the network" permission on the certificate authority.

See also article "Certificate request fails with error message "The certificate request could not be submitted to the certification authority. Error: The RPC server is unavailable. 0x800706ba (WIN32: 1722 RPC_S_SERVER_UNAVAILABLE)".„.

Safety assessment

The security assessment is based on the three dimensions of confidentiality, integrity and availability.

No description has been written for this yet.

Related links:

en_USEnglish
de_DEDeutsch en_USEnglish