Event Source: | Microsoft-Windows-CertificateServicesClient-CertEnroll |
Event ID: | 76 (0x825A004C) |
Event log: | Application |
Event type: | Warning |
Event text (English): | Certificate enrollment for %1 failed in authentication to enrollment server %2 (%6). Policy Id: %3. Authentication mechanism was %5 (Credential: %4). |
Event text (German): | Certificate registration error for %1 when authenticating for registration server %2 (%6). Policy ID: %3. Authentication mechanism used %5 (credentials: %4). |
Parameter
The parameters contained in the event text are filled with the following fields:
- %1: Context (win:UnicodeString)
- %2: ServerURL (win:UnicodeString)
- %3: ServerID (win:UnicodeString)
- %4: Credential (win:UnicodeString)
- %5: AuthType (win:UnicodeString)
- %6: ErrorCode (win:UnicodeString)
Example events
Certificate enrollment for INTRA\rudi failed in authentication to enrollment server CA02.intra.adcslabor.de\ADCS Labor Issuing CA 1 (The RPC server is unavailable. 0x800706ba (WIN32: 1722 RPC_SERVER_UNAVAILABLE)). Policy Id: {BA88EA53-D182-4A4E-9B1B-5A169EB3D93D}. Authentication mechanism was windows integrated (Credential: credential is private).
Description
Do you know TameMyCerts? TameMyCerts is an add-on for the Microsoft certification authority (Active Directory Certificate Services). It extends the function of the certification authority and enables the Application of regulationsto realize the secure automation of certificate issuance. TameMyCerts is unique in the Microsoft ecosystem, has already proven itself in countless companies around the world and is available under a free license. It can downloaded via GitHub and can be used free of charge. Professional maintenance is also offered.
Indicates that authentication to a certification authority was not possible.
Error code 0x800706ba (The RPC server is unavailable)
Possible causes for this error message are:
- The certificate authority server is switched off.
- The certification authority service on the certification authority is not running.
- The client cannot connect to the certificate authority because a firewall prevents the connection. See also article "Firewall rules required for Active Directory Certificate Services„.
- The DNS record for the certification authority points to the wrong server.
- The requesting account does not have the "Access this Computer from the network" permission on the certificate authority.
Safety assessment
The security assessment is based on the three dimensions of confidentiality, integrity and availability.
No description has been written for this yet.