I have following domains:
DC00 is Windows server 2003 Standard SP1, domain: domain.com - Parent domain
DC01 is Windows server 2003 Standard SP2, domain: standard.domain.com - child domain
I want all of my clients to receive certificate for identifying them, the certificate will be distributed while clients logon to the domain automatically. In my case i have installed CA on DC00 as Enterprise Root CA, have exported server certificate and have imported it to new GPO on DC01 server. Other than this i have created a new automatic certificate request in same GPO.
Then I exported the server certificate, and imported it into a new GPO on the DC01 server under Computer Configuration - Windows settings - Public key policies - Trusted Root Certification Authorities. My problem is that both certificates are getting enrolled to my DC01 domain controller and i see below message in event log:
Event ID:13
Source: Autoenrollment
Automatic certificate enrollment for local system failed to enroll for one Domain Controller certificate (0x800706ba). The RPC server is unavailable.
and
Event ID: 10009
Source:DCOM
DCOM was unable to communicate with the computer <computer name> using any of the configured protocols.
Can there be anything wrong with firewall between DC00 and my client? Is there anything i can try out to fix it???
Bookmarks