| Event Source: | Microsoft-Windows-CertificationAuthority |
| Event ID: | 84 (0x54) |
| Event log: | Application |
| Event type: | Error |
| Symbolic Name: | MSG_E_INVALID_KRA_CERT |
| Event text (English): | Active Directory Certificate Services will not use key recovery certificate %1 because it could not be verified for use as a Key Recovery Agent. %2 %3 |
| Event text (German): | Key Recovery Certificate %1 is not used by Active Directory Certificate Services because it could not be verified for use as a Key Recovery Agent. %2 %3 |
Parameter
The parameters contained in the event text are filled with the following fields:
- %1: KRACertIndex (win:UnicodeString)
- %2: KRACertSubjectName (win:UnicodeString)
- %3: ErrorCode (win:UnicodeString)
Example events
Active Directory Certificate Services will not use key recovery certificate 0 because it could not be verified for use as a Key Recovery Agent. CN=Administrator, CN=Users, DC=intra, DC=adcslabor, DC=en The revocation function was unable to check revocation because the revocation server was offline. 0x80092013 (-2146885613 CRYPT_E_REVOCATION_OFFLINE)
Description
Safety assessment
The security assessment is based on the three dimensions of confidentiality, integrity and availability.
Since the certification authority does not accept certificate requests for which private key archiving is configured, and such certificate ccta thus cannot be requested, availability is affected.
Microsoft rating
Microsoft evaluates this event in the Securing Public Key Infrastructure (PKI) Whitepaper with a severity score of "Low".
Related links:
- Overview of Windows events generated by the certification authority
- Overview of audit events generated by the Certification Authority
External sources
- Event ID 84 - AD CS Key Archival and Recovery (Microsoft)
- Securing Public Key Infrastructure (PKI) (Microsoft)
English 
Deutsch
One thought on “Details zum Ereignis mit ID 84 der Quelle Microsoft-Windows-CertificationAuthority”
Comments are closed.