Assume the following scenario:
- A certification authority is installed.
- The certificate authority uses a Gemalto/SafeNet Hardware Security Module (HSM) with the SafeNet Luna Key Storage Provider.
- After the certification authority certificate is issued by the parent certification authority, it is installed to complete the role configuration.
- The installation of the certificate authority certificate fails with the following error message:
An error was detected while configuring Active Directory Certificate Services. The Active Directory Certificate Services Setup Wizard will need to be rerun to complete the configuration. The new certificate public key does not match the current outstanding request. The wrong request may have been used to generate the new certificate: Provider DLL failed to initialize correctly. 0x8009001d (-2146893795 NTE_PROVIDER_DLL_FAIL)
This message occurs when the logged in user's account is not authorized by the SafeNet KspConfig application on the HSM partition.
Please pay attention to upper/lower case when entering the user name.
Please also keep in mind that NT AUTHORITY\SYSTEM must be authorized so that the certificate authority service can be started afterwards.
Related links:
- Installation of a certificate authority certificate fails with error message "Insufficient access rights to perform the operation. 0x80072098 (WIN32: 8344 ERROR_DS_INSUFF_ACCESS_RIGHTS)".
- The certification authority service does not start and throws the error message "The system cannot find the file specified. 0x2 (WIN32: 2 ERROR_FILE_NOT_FOUND)".
English 
Deutsch
2 thoughts on “Die Installation eines Zertifizierungsstellen-Zertifikats schlägt fehl mit Fehlercode „NTE_PROVIDER_DLL_FAIL“”
Comments are closed.