J
JMS
Hello everyone
I'm having a strange problem with my CA.
Configuration: Windows 2003 - Certification Authority - Configured as
Enterprise Certification Authority (Member Server)
I already configured Default Domain Policy
PK Policies
Computer Section: Autoenrollment Settings - Enroll Certificates Automat.,
renew expired certificates and update certificates.
Computer Section: Trusted Root Certification Authorities - I have The
Certificate for the Trusted Root Certificate Authority
Computer Section: Automatic Certificate Request Settings i have a computer
certificate
User Section: Autoenrollment Settings - Enroll Certificates Automat., renew
expired certificates and update certificates.
Now the Problem:
The Root CA is being issued to all computers with no problems
The Windows XP in my domain are being issued with success the computer
certificate. (No problems with this)
None of my users are being issued any certificate.(I already tryed to
duplicate the user certificate and enabled Read, Enroll and Autoenroll
permission, but with no success)
My domain controller (also a Windows 2003 Standard Edition) don't have
certificate issued from my Root CA. I tryed to request manually from mmc
console All Tasks -> Request new certificate -> Domain Controller
certificate, but gives me an error: "The request could not be completed. The
RPC server is unavailable", if i type on command prompt gpupdate /force, in
my event viewer i get the error Source:AutoEnrollment - EventID:13 -
Description: Automatic certificate enrollment for local system failed to
enroll for one Domain Controller certificate (0x800706ba). The RPC server is
unavailable.
All of my computers in my domain have the root CA installed automatically.
Please any help woul be very app.
Best Regards.
I'm having a strange problem with my CA.
Configuration: Windows 2003 - Certification Authority - Configured as
Enterprise Certification Authority (Member Server)
I already configured Default Domain Policy
PK Policies
Computer Section: Autoenrollment Settings - Enroll Certificates Automat.,
renew expired certificates and update certificates.
Computer Section: Trusted Root Certification Authorities - I have The
Certificate for the Trusted Root Certificate Authority
Computer Section: Automatic Certificate Request Settings i have a computer
certificate
User Section: Autoenrollment Settings - Enroll Certificates Automat., renew
expired certificates and update certificates.
Now the Problem:
The Root CA is being issued to all computers with no problems
The Windows XP in my domain are being issued with success the computer
certificate. (No problems with this)
None of my users are being issued any certificate.(I already tryed to
duplicate the user certificate and enabled Read, Enroll and Autoenroll
permission, but with no success)
My domain controller (also a Windows 2003 Standard Edition) don't have
certificate issued from my Root CA. I tryed to request manually from mmc
console All Tasks -> Request new certificate -> Domain Controller
certificate, but gives me an error: "The request could not be completed. The
RPC server is unavailable", if i type on command prompt gpupdate /force, in
my event viewer i get the error Source:AutoEnrollment - EventID:13 -
Description: Automatic certificate enrollment for local system failed to
enroll for one Domain Controller certificate (0x800706ba). The RPC server is
unavailable.
All of my computers in my domain have the root CA installed automatically.
Please any help woul be very app.
Best Regards.