Re: Request for a user certificate Fails

From: "Steven L Umbach" <n9rou@xxxxxxxxxxxxxxxxxxxxxxxxxx>
Date: Fri, 27 Jan 2006 18:30:19 -0600

Does this happen for just one user or every user on every domain computer?
Can any certificate be requested [computer or user] from the CA? Can you
logon to the CA as an administrator and request/receive a user certificate
for yourself? You may also try Web enrollment if you have not yet. Check the
logs via Event Viewer on the client computer and the CA to see if anything
relevant is reported and run the command certutil -ping on the CA to see if
it reports that CA is alive if no certificates of any kind can be
equested. --- Steve

"Craig Chin" <CraigChin@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:DE005E2B-FE6D-41D7-B7D7-3A4526E6D50F@xxxxxxxxxxxxxxxx
> When Requesting a User Certificate from my Enterprise Root CA it fails
> with
> the Error Below
>
> Request Mode:
> newreq - New Request
> Disposition:
> FFFFFFFF - (unknown)
> Disposition message:
> (none)
> Result:
> The binding handle is invalid. 0x800706a6 (WIN32: 1702)
> COM Error Info:
> CCertRequest::Submit The binding handle is invalid. 0x800706a6 (WIN32:
> 1702)
> LastStatus:
> The operation completed successfully. 0x0 (0)
> Suggested Cause:
> No suggestions.
>
>
>

.

Prev by Date: Re: The system cannot log you on now because the domain is not availab
Next by Date: Re: ANONYMOUS LOGON when changing windows 2000 workstation password
Previous by thread: The system cannot log you on now because the domain is not availab
Next by thread: Re: Request for a user certificate Fails
Index(es):
- Date
- Thread

Relevant Pages

Re: Computer and User Certificates Issues
... Enrollment of User Certificates using the custom v2 User Certificate Template ... I can NOT request the custom v2 Computer Cert nor the included v1 no ... Concerning permissions, these are the exact permissions I am using now: ...
(microsoft.public.security)
Re: Cannot request computer certificate.
... request a computer certificate for about 9 months. ... and verify that you can get a computer/server certificate from it. ... List of NetBt transports currently bound to the Redir ... DNS Host Name: srvr3.domain.com ...
(microsoft.public.windows.server.security)
RE: SIMple SSL question ??
... OK - i would also delete a cert request file lying around. ... But a certificate is a pub key + extra info. ... That said - if someone compromises the server he will also find a way to retrieve the private key. ... traffic between the initial web server and the client. ...
(microsoft.public.dotnet.security)
Re: how can we restrict what certificate WSE will use?
... the valid x509 certificate which is used to identify him'. ... X509SecurityTokenManager to verify the request is from a trusted client. ... the problem is that he can not passed the authentication (suppose we ... > decrypte and signature validation process. ...
(microsoft.public.dotnet.framework.webservices.enhancements)
Re: Web Certificate Enrollment security problem
... Enrollment works only with the NetBIOS Name and not with the FQDN. ... Svyatoslav Pidgorny, MS MVP - Security, MCSE ... access auditing and logging "issue and manage certificate requests" on ... Have seen that there is a component "Certsrv Request" when launching ...
(microsoft.public.security)