KDC Certificate issue

  • Thread starter Thread starter Steve Gould
  • Start date Start date
S

Steve Gould

We had a problem a few weeks back. Our time server goofed up bad and reset
its clock to 1969. This caused the entire domain to reset clocks as well as
time stamps on email, etc. We are recovered, but still have one nagging
problem that I can't find an answer for. All servers have KDC errors:

Event Type: Warning
Event Source: KDC
Event Category: None
Event ID: 20
Date: 7/30/2005
Time: 9:46:32 PM
User: N/A
Computer: ServerName
Description:
The currently selected KDC certificate was once valid, but now is invalid
and no suitable replacement was found. Smartcard logon may not function
correctly if this problem is not remedied. Have the system administrator
check on the state of the domain's public key infrastructure. The chain
status is in the error data.

For more information, see Help and Support Center at
http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 00 00 00 00 00 00 00 00 ........
0008: 00 00 00 00 00 00 00 00 ........



I assume this to mean that I have an expired certificate somewhere, but I
just don't know where to look. Can someone point me in the right direction
to solve this?
 
We had a problem a few weeks back. Our time server goofed up
bad and reset
its clock to 1969. This caused the entire domain to reset
clocks as well as
time stamps on email, etc. We are recovered, but still have
one nagging
problem that I can't find an answer for. All servers have KDC
errors:

Event Type: Warning
Event Source: KDC
Event Category: None
Event ID: 20
Date: 7/30/2005
Time: 9:46:32 PM
User: N/A
Computer: ServerName
Description:
The currently selected KDC certificate was once valid, but now
is invalid
and no suitable replacement was found. Smartcard logon may
not function
correctly if this problem is not remedied. Have the system
administrator
check on the state of the domain's public key infrastructure.
The chain
status is in the error data.

For more information, see Help and Support Center at
http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 00 00 00 00 00 00 00 00 ........
0008: 00 00 00 00 00 00 00 00 ........



I assume this to mean that I have an expired certificate
somewhere, but I
just don't know where to look. Can someone point me in the
right direction
to solve this?
Click to expand...

see:
http://www.eventid.net/display.asp?eventid=20&eventno=3396&source=KDC&phase=1
 
Back
Top