Okay I figured it out. Apparently this is something that SP1 inadvertently
plugs up, you need to manually reopen it by following this MS KB article:
http://support.microsoft.com/kb/903220
In summary, you need to run these three commands in cmd:
certutil –setreg SetupStatus –SETUP_DCOM_SECURITY_UPDATED_FLAG
net stop certsvc
net start certsvc
--
---------
Ron B.
mrbiggs.net
"Ron B." wrote:
> All servers in question are running Windows Server 2003 R Standard, SP2. Our
> Enterprise Root CA is running 2003 Enterprise Edition.
> I'm trying to make certificates for member servers and our IAS server, but
> I'm getting the following error:
> The certificate request failed because one of the following conditions:
> - The certificate request was submitted to a Certification Authority (CA)
> that is not started. (OR)
> - You do not have the permissions to request certificates from the available
> CAs.
> The funny thing is if I request a user based certificate, it processes just
> fine. I'm doing all requests through the MMC, through Certificates - Local
> Computer.
> If I request a computer certificate on the Root CA for the Root CA, it
> processes fine.
> --
> ---------
> Ron B.
> mrbiggs.net
Similar Threads
Linear Mode
