Hi,
Having major issues installing NDES on a new Server 2012 (Standard) server that is a subordinate CA in a two-tier deployment with a single Offline Root CA.
The error I am getting is:
‘Failed to add the web virtual directory. Keyset does not exist 0x80090016 (-2146893802)’
We checked the \Microsoft\Crypto\RSA\MachineKeys folder and it appeared there was a missing key.
(We had some issues before during the initial deployment where the Issuing CA had to be decommissioned and when re-installed had to overwrite the existing keys but since then the server has issued certificates (web server template) and all the certificate chain looks OK etc.)
The CRLs are valid and pkiview.msc shows as OK (healthy).
After coping the missing MachineKeys back into that folder we were able to install the NDES role OK. However, when we now try and browse the website (mscep_admin) it prompts for authentication and fails with an Internal 500 error...
If anyone has any thoughts, or has seen this before, any advice would be much appreciated.
Thanks,
James.