Details of the event with ID 3 of the source Microsoft-Windows-EnrollmentPolicyWebService

Event Source:Microsoft-Windows-EnrollmentPolicyWebService
Event ID:3 (0x3)
Event log:Microsoft-Windows-EnrollmentPolicyWebService/Admin
Event type:Warning
Event text (English):A service end point with URI %1 has been configured for this service. The configuration of the client authentication scheme or the binding is not recommended. To fix the issue, open the web.config file and verify the binding and security settings. The only supported binding type for this service is wsHttpBinding. The security mode should be either Transport or TransportWithMessageCredential. When the security mode is Transport, the ClientCredentialType should be either Windows or Certificate. When the security mode is TransportWithMessageCredential, the ClientCredentialType should be UserName.
Event text (German):A service endpoint with URI "%1" has been configured for this service. The configuration of the client authentication scheme or binding is not recommended. Open the "web.config" file and check the binding and security settings to resolve this issue. Only the binding type "wsHttpBinding" is supported for this service. For the security mode, "Transport" or "TransportWithMessageCredential" should be selected. If "Transport" is selected, the credential type for the client should be "Windows" or "Certificate". If "TransportWithMessageCredential" is selected, the credential type for the client should be "Username".

Parameter

The parameters contained in the event text are filled with the following fields:

  • %1: URL (win:UnicodeString)

The Certificate Enrollment Web Services (Certificate Enrollment Policy Web Service, CEP, and Certificate Enrollment Web Service, CES) enable the automatic request and renewal of certificates from a certification authority via a Web-based interface. This eliminates the need to contact the certification authority directly via Remote Procedure Call (RPC). For a more detailed description, see the article "Certificate request basics via Certificate Enrollment Web Services (CEP, CES)„.

Description

Do you know TameMyCerts? TameMyCerts is an add-on for the Microsoft certification authority (Active Directory Certificate Services). It extends the function of the certification authority and enables the Application of regulationsto realize the secure automation of certificate issuance. TameMyCerts is unique in the Microsoft ecosystem, has already proven itself in countless companies around the world and is available under a free license. It can downloaded via GitHub and can be used free of charge. Professional maintenance is also offered.

No description has been written for this yet.

Safety assessment

The security assessment is based on the three dimensions of confidentiality, integrity and availability.

No description has been written for this yet.

Related links:

External sources

en_USEnglish