Information wants to be free!
The Events Windows clients can request certificates on their own (autoenrollment) or with the help of a user. When enrolling for a certificate you may find this pair of events in your Application log: Source: Microsoft-Windows-CertificateServicesClient-CertEnroll Event ID: 64 Level: Information User: S-1-5-18 User Name: NT AUTHORITYSYSTEM Computer: <servername> Description: Certificate enrollment for Local system …
Continue reading “Decoding some certificate enrollment client events”
After issuing a new certificate for a Windows Server 2003 running IAS this error presented itself in the IAS console when trying to configure EAP with the new certificate: “A certificate could not be found that can be used with this Extensibel Authentication Protocol.” This was accompanied by these two events in the System Log: …
This is a quick list of the groups associated with Active Directory Certificate Services. CERTSVC_DCOM_ACCESS Purpose: Grant DCOM access to Certificate Authority. Default description: This group has no default description. Group type: Local/Domain Local Security group. Default members: Everyone/Domain Users and Domain Computers. This group is created when Windows Server 2003 Service Pack 1 is …
Continue reading “An overview of groups used by Active Directory Certificate Services”