Hi All,
There are PKI infrastructure:
It seems work and right config.
But there is one problem.
PCs and DCs in domain cannot request computer cert from both CA.
Manual enroll through mmc fails on domain members/domain controllers with error
Source: CertificateServicesClient-CertEnroll
Event ID: 13
Certificate enrollment for Local system failed to enroll for a Workstation/Domain Controller certificate from ....(name of CA).... (The RPC server is unavailable. 0x800706ba (WIN32: 1722)).
Autoenroll through GP/Manual enroll through Web-enrollment also failed.
But!!! User enroll cert without problem. At least through mmc console i can enroll user cert.
Plz help somebody. I crash my mind with problem. )))
Thanks all.
There are PKI infrastructure:
- 1 standalone root CA (Win 2008 Std, workgroup, offline)
- 2 enterprise issuing CA (Win 2008 Ent, DC role, NPS role)
It seems work and right config.
But there is one problem.
PCs and DCs in domain cannot request computer cert from both CA.
Manual enroll through mmc fails on domain members/domain controllers with error
Source: CertificateServicesClient-CertEnroll
Event ID: 13
Certificate enrollment for Local system failed to enroll for a Workstation/Domain Controller certificate from ....(name of CA).... (The RPC server is unavailable. 0x800706ba (WIN32: 1722)).
Autoenroll through GP/Manual enroll through Web-enrollment also failed.
But!!! User enroll cert without problem. At least through mmc console i can enroll user cert.
Plz help somebody. I crash my mind with problem. )))
Thanks all.