Thursday, July 21, 2011

Automatic certificate enrollment for local system failed to enroll for one Domain Controller certificate (0x80070005). Access is denied." Source = AutoEnrollment, ID = 13

This event started on few DCs after we  installed Certificate Athourity on our PDC, Windows Server 2003 SP2. There was no events related to this on this CA DC, And wasn't any event on another DC in the same site either. This issue only came on another two remote site DCs with Windows Server 2003 SP2.
Adding Domain Controllers group to the "CERTSVC_DCOM_ACCESS" group  fixed this issue. (This Domain local group was created once we installed CA on DC)

No comments: