Collection Rule for event with source CertificationAuthority and ID 27 Rule

  • ID:  Microsoft.Windows.CertificateServices.CARole.6.3.CertSvcEvents.27
  • Description:  CA installation incomplete.
  • Target:  Certificate Service (2012 R2)
  • Enabled:  On Essential Monitoring

Run As Profiles

Name
Default

Rule Knowledgebase

Summary

Chain or path validation is the process by which end-entity (user or computer) certificates and all certification authority (CA) certificates are processed hierarchically until the certificate chain terminates at a trusted, self-signed certificate. Typically, this is a root CA certificate. Active Directory Certificate Services (AD CS) startup can fail if there are problems with availability, validity, and chain validation for the CA certificate.

Causes
This rule does not contain any causes.
Resolutions

Complete installation by importing a newly issued CA certificate

A certification authority (CA) must have a valid CA certificate in order to function. If you do not already have a valid CA certificate, complete the installation by importing one.

To perform this procedure, you must have Manage CA permission, or you must have been delegated the appropriate authority.

To import a newly issued CA certificate and complete a CA installation:

  • On the computer hosting the CA, click Start, point to Administrative Tools, and then click Certification Authority.

  • Right-click the name of the CA, point to All Tasks, and click Start Service.

  • Follow the prompts to complete installation by importing the newly issued CA certificate.

External References
This rule does not contain any external references.

See Also for Active Directory Certificate Services Management Pack


Downloads for Active Directory Certificate Services Management Pack

AZURE OPTIMIZATION ASSESSMENT GET STARTED
MIGRATION TO AZURE GET STARTED
SYSTEM CENTER MIGRATION TO AZURE GET STARTED
MIGRATION TO AZURE FOR SQL AND WINDOWS 2008 GET STARTED