| Event Source: | Microsoft-Windows-CertificateServicesClient-CertEnroll |
| Event ID: | 52 (0x825A0034) |
| Event log: | Application |
| Event type: | Warning |
| Event text (English): | The CA certificate for %3 is not trusted. Certificate enrollment for %1 for a %2 certificate failed. |
| Event text (German): | The certificate authority certificate for %3 is not trusted. Certificate registration for %1 for a %2 certificate was not successful. |
Parameter
The parameters contained in the event text are filled with the following fields:
- %1: Context (win:UnicodeString)
- %2: TemplateName (win:UnicodeString)
- %3: CAName (win:UnicodeString)
Example events
The CA certificate for ADCS Labor Issuing CA 1 is not trusted. Certificate enrollment for Local system for an ADCSLaborComputer certificate failed.
Description
Do you know TameMyCerts? TameMyCerts is an add-on for the Microsoft certification authority (Active Directory Certificate Services). It extends the function of the certification authority and enables the Application of regulationsto realize the secure automation of certificate issuance. TameMyCerts is unique in the Microsoft ecosystem, has already proven itself in countless companies around the world and is available under a free license. It can downloaded via GitHub and can be used free of charge. Professional maintenance is also offered.
This event occurs when the client does not trust the certification authority's certificate.
This is usually the case when the root CA certificate has not been distributed to the clients or the certificate chain cannot be completed to the root CA.
The distribution of the root CA certificate is usually done via Group Policy or via the Autoenrollment Process.
See also the following articles:
- Certificate request fails with error message "The requested certificate template is not supported by this CA. 0x80094800 (-2146875392 CERTSRV_E_UNSUPPORTED_CERT_TYPE)."
- Requesting a certificate fails with the error message "A certification chain processed correctly, but one of the CA certificates is not trusted by the policy provider. 0x800b0112 (-2146762478 CERT_E_UNTRUSTEDCA)".
- The local certificate store for trusted root certificate authorities is not synchronized from Active Directory
Safety assessment
The security assessment is based on the three dimensions of confidentiality, integrity and availability.
No description has been written for this yet.
English 
Deutsch
4 thoughts on “Details zum Ereignis mit ID 52 der Quelle Microsoft-Windows-CertificateServicesClient-CertEnroll”
Comments are closed.