Collection Rule for event with source CertificationAuthority and ID 105 Rule

  • ID:  Microsoft.Windows.CertificateServices.CARole.6.2.CertSvcEvents.105
  • Description:  Active Directory Certificate Services deleted invalid certificate.
  • Target:  Certificate Service (2012)
  • Enabled:  On Essential Monitoring

Run As Profiles

Name
Default

Rule Knowledgebase

Summary

Chain or path validation is the process by which end-entity (user or computer) certificates and all certification authority (CA) certificates are processed hierarchically until the certificate chain terminates at a trusted, self-signed certificate. Typically, this is a root CA certificate. Active Directory Certificate Services (AD CS) startup can fail if there are problems with availability, validity, and chain validation for the CA certificate.

Causes
This rule does not contain any causes.
Resolutions

AD CS deleted an invalid certificate in Active Directory Domain Services

Active Directory Certificate Services (AD CS) deleted an invalid certificate from Active Directory Domain Services (AD DS). The certificate that was deleted is specified in the event log description.

AD CS will delete a certificate if it determines that certificates in the AIA container in AD DS are not consistent with the certificates in the local store of the certification authority (CA).

External References
This rule does not contain any external references.

See Also for Active Directory Certificate Services Management Pack


Downloads for Active Directory Certificate Services Management Pack

AZURE OPTIMIZATION ASSESSMENT GET STARTED
MIGRATION TO AZURE GET STARTED
SYSTEM CENTER MIGRATION TO AZURE GET STARTED
MIGRATION TO AZURE FOR SQL AND WINDOWS 2008 GET STARTED