Event Source: | Microsoft-Windows-CertificationAuthority |
Event ID: | 105 (0x69) |
Event log: | Application |
Event type: | Information |
Symbolic Name: | MSG_E_DELETED_INVALID_CA_CERT |
Event text (English): | Active Directory Certificate Services deleted invalid certificate %1 from %2. |
Event text (German): | Invalid certificate %1 was deleted from %2 by Active Directory Certificate Services. |
Parameter
The parameters contained in the event text are filled with the following fields:
- %1: CACertIdentifier (win:UnicodeString)
- %2: DN (win:UnicodeString)
Example events
Active Directory Certificate Services deleted invalid certificate 1 from CN=ADCS Labor Issuing CA 2,CN=AIA,CN=Public Key Services,CN=Services,CN=Configuration,DC=intra,DC=adcslabor,DC=de.
Description
This event occurs, among other things, when the certification authority deletes one of its certification authority certificates from Authority Information Access (AIA) in Active Directory, for example, when it has been revoked (see article "What impact does the revocation of a certification authority certificate have on the certification authority?„).
Safety assessment
The security assessment is based on the three dimensions of confidentiality, integrity and availability.
No description has been written for this yet.
Microsoft rating
Microsoft evaluates this event in the Securing Public Key Infrastructure (PKI) Whitepaper with a severity score of "Low".
Related links:
- Overview of Windows events generated by the certification authority
- Overview of audit events generated by the Certification Authority