I am getting the message: Type: Error Event ID: 13 User: N/A Computer: XXXXXX Automatic certificate enrollment for local system failed to enroll for one Domain Controller certificate (0x80070005). Access is denied. There error is appearing every 8 hours like clockwork. This error is appearing on a DC running Windows Server 2003 Std Edition running Service Pack 2 and the CA is running on Windows 2000 SP 4 I have seen the other questions regarding CERTSVC_DCOM_ACCESS and DCOM access errors, but I don't even see a CERTSVC_DCOM_ACCESS group out there in my AD anywhere. Any assistance would be appreciated. Thank you.
I have the very same problem.. what is this error about? "Cyberwiz64" wrote: > I am getting the message: > > Type: Error > Event ID: 13 > User: N/A > Computer: XXXXXX > > Automatic certificate enrollment for local system failed to enroll for one > Domain Controller certificate (0x80070005). Access is denied. > > There error is appearing every 8 hours like clockwork. > > This error is appearing on a DC running Windows Server 2003 Std Edition > running Service Pack 2 and the CA is running on Windows 2000 SP 4 > > I have seen the other questions regarding CERTSVC_DCOM_ACCESS and DCOM > access errors, but I don't even see a CERTSVC_DCOM_ACCESS group out there in > my AD anywhere. > > Any assistance would be appreciated. > > Thank you.
I actually opened a ticket with Microsoft. Basically the problem is because the default domain controller group policy was set for autoenrollment. Because the CA is running on Windows 2000 it does not support AutoEnrollment. The causes a conflict because the domain controllers are told to autoenroll and the CA can't. Bottom line: - I disabled the autoenrollment from the group policy. - I will remove certificate services from the 2000 box. - I am moving the CA to a 2003 ENTERPRISE Edition box. Create a version 2 certificate template which can be autoenrolled. - Re-enable the autoenrollment in the Domain Controllers Group Policy. I can send you the notes on this if you like. Contact cyberwiz64@gmail.com. Thank you. "RE" wrote: > I have the very same problem.. > what is this error about? > > "Cyberwiz64" wrote: > > > I am getting the message: > > > > Type: Error > > Event ID: 13 > > User: N/A > > Computer: XXXXXX > > > > Automatic certificate enrollment for local system failed to enroll for one > > Domain Controller certificate (0x80070005). Access is denied. > > > > There error is appearing every 8 hours like clockwork. > > > > This error is appearing on a DC running Windows Server 2003 Std Edition > > running Service Pack 2 and the CA is running on Windows 2000 SP 4 > > > > I have seen the other questions regarding CERTSVC_DCOM_ACCESS and DCOM > > access errors, but I don't even see a CERTSVC_DCOM_ACCESS group out there in > > my AD anywhere. > > > > Any assistance would be appreciated. > > > > Thank you.
