Event Source: | Microsoft-Windows-CertificateServicesClient-CertEnroll |
Event ID: | 76 (0x825A004C) |
Event log: | Application |
Event type: | Warning |
Event text (English): | Certificate enrollment for %1 failed in authentication to enrollment server %2 (%6). Policy Id: %3. Authentication mechanism was %5 (Credential: %4). |
Event text (German): | Certificate registration error for %1 when authenticating for registration server %2 (%6). Policy ID: %3. Authentication mechanism used %5 (credentials: %4). |
Parameter
The parameters contained in the event text are filled with the following fields:
- %1: Context (win:UnicodeString)
- %2: ServerURL (win:UnicodeString)
- %3: ServerID (win:UnicodeString)
- %4: Credential (win:UnicodeString)
- %5: AuthType (win:UnicodeString)
- %6: ErrorCode (win:UnicodeString)
Example events
Certificate enrollment for INTRA\rudi failed in authentication to enrollment server CA02.intra.adcslabor.de\ADCS Labor Issuing CA 1 (The RPC server is unavailable. 0x800706ba (WIN32: 1722 RPC_SERVER_UNAVAILABLE)). Policy Id: {BA88EA53-D182-4A4E-9B1B-5A169EB3D93D}. Authentication mechanism was windows integrated (Credential: credential is private).
Description
Indicates that authentication to a certification authority was not possible.
Error code 0x800706ba (The RPC server is unavailable)
Possible causes for this error message are:
- The certificate authority server is switched off.
- The certification authority service on the certification authority is not running.
- The client cannot connect to the certificate authority because a firewall prevents the connection. See also article "Firewall rules required for Active Directory Certificate Services„.
- The DNS record for the certification authority points to the wrong server.
- The requesting account does not have the "Access this Computer from the network" permission on the certificate authority.
Safety assessment
The security assessment is based on the three dimensions of confidentiality, integrity and availability.
No description has been written for this yet.