This question was asked based on Windows 7 and Server 2008 R2... per link below
I figured in starting a new thread since no answer was given.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
I am inquiring if there is any fix for Windows Server 2012.
I had tried the setspn -s and used setspn -L DOMAIN\CEWS_Service_User_Name and the URI is listed utilizing the -L and username parameter.
Verified the CEP machine IIS AppPool user name is set with CEWS_Service_User_Name
Applied and verified Delegation Service Type (HOST and rpcss of ca.pre.domain.suf machine).
I am curious if anyone else have come across the same issue as below from the following site:http://technet.microsoft.com/en-us/library/tlg-key-based-renewal.aspx
Topic: To configure WEB1 for automated certificate renewal
specifically item 8 thru 10. upon validation, it error when validating with the following: Access was denied by the remote endpoint. 0x803d0005 (-2143485947)