Windows: AutoEnrollment Event ID 13
Just the other day, my Event Viewer was full of the following error. Since the error didn't go away after a day, I figured I better look into the issue and fix it.
The fix is fairly simple and noted at various pages on the world wide web. Running the following commands should resolve the issue for you:
certutil -setreg SetupStatus -SETUP _DCOM_SECURITY_UPDATED_FLAG
net stop certsvc
net start certsvc
In my case, the "Certificate Services" service on my DC had somehow been removed. Re-adding it and running the commands above resolved the issue.
Resources:
http://www.microsoft.com/technet/security/prodtech/windowsserver2003/build_ent_root_ca.mspx
http://support.microsoft.com/kb/903220
Event Type: Error
Event Source: AutoEnrollment
Event Category: None
Event ID: 13
Date: 01/01/1970
Time: 00:00:00 AM
User: N/A
Computer: FOO
Description:
Automatic certificate enrollment for local system failed to enroll for one Domain Controller certificate (0x80070005). Access is denied.
For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.The fix is fairly simple and noted at various pages on the world wide web. Running the following commands should resolve the issue for you:
certutil -setreg SetupStatus -SETUP _DCOM_SECURITY_UPDATED_FLAG
net stop certsvc
net start certsvc
In my case, the "Certificate Services" service on my DC had somehow been removed. Re-adding it and running the commands above resolved the issue.
Resources:
http://www.microsoft.com/technet/security/prodtech/windowsserver2003/build_ent_root_ca.mspx
http://support.microsoft.com/kb/903220
