Details of the event with ID 60 of the source Microsoft-Windows-CertificationAuthority

Event Source:	Microsoft-Windows-CertificationAuthority
Event ID:	60 (0x3C)
Event log:	Application
Event type:	Error
Event text (English):	Active Directory Certificate Services refused to process an extremely long request from %1. This may indicate a denial-of-service attack. If the request was rejected in error, modify the MaxIncomingMessageSize registry parameter via certutil -setreg CA\MaxIncomingMessageSize . Unless verbose logging is enabled, this error will not be logged again for 20 minutes.
Event text (German):	Processing of an extremely long request from %1 was rejected. This may indicate a denial of service attack. Change the registry parameter "MaxIncomingMessageSize" via " certutil -setreg CA\MaxIncomingMessageSize " if the request was rejected due to an error. Unless verbose logging is enabled, this error will not be logged again for 20 minutes.

Parameter

The parameters contained in the event text are filled with the following fields:

• %1: SubjectName (win:UnicodeString)

Description

No description has been written for this yet.

Safety assessment

The security assessment is based on the three dimensions of confidentiality, integrity and availability.

No description has been written for this yet.

Microsoft rating

Microsoft evaluates this event in the Securing Public Key Infrastructure (PKI) Whitepaper with a severity rating of "Severe".

Related links:

• Overview of Windows events generated by the certification authority
• Overview of audit events generated by the Certification Authority

External sources

• Securing Public Key Infrastructure (PKI) (Microsoft)