VPN stopped working - Machine Certificate

Hi,

I have a Windows Server 2003 VPN server. I only allow L2TP connections.
Everything was working fine when suddenly this morning I could not longer
connect. The error message is

Error: 786: The L2TP connection attempt failed because there is no valid
machine certificate on your computer for security authentification.

The thing is that there is. I have checked the computer certificates
Personal store for the IPSec-Offline request cert and the Trusted Root CA
store for my CA's server cert. Both are present and still active (not
expired). How can this happen. I haven't changed a thing. It was working
perfectly yesterday. It really is bizarre. Please help. I have a couple
of users that work remotely and depend on the VPN connection. And with it
being the weekend many managers will dial in from home. Please please help
(what a way to start the weekend).

TIA,

Jarryd




Jarryd

Hi,

I have found my problem. The computer certificate of the RRAS server has
expired. So the solution is easy - just request a new one, right? Nope. I
get the following error message:

The certificate request failed because of one of the following conditions:
-The certificate request was submitted to a Certification Authority (CA)
that is not started.
-You do not have the permissions to request certificates from the available
CAs.

It has got to be the second one. But how would I have lost permission? I
have gone absolutely balmy by granting myself and my PC full control to the
Computer and Enrollment Agent (computer) templates. Still not happening.
The CA can successfully request certificates from itself, but all remote PCs
fail, even DCs.

Why me?!!

Please help!!

TIA,

Jarryd
"Jarryd" <(E-Mail Removed)> wrote in message
news:(E-Mail Removed)...
> Hi,
>
> I have a Windows Server 2003 VPN server. I only allow L2TP connections.
> Everything was working fine when suddenly this morning I could not longer
> connect. The error message is
>
> Error: 786: The L2TP connection attempt failed because there is no valid
> machine certificate on your computer for security authentification.
>
> The thing is that there is. I have checked the computer certificates
> Personal store for the IPSec-Offline request cert and the Trusted Root CA
> store for my CA's server cert. Both are present and still active (not
> expired). How can this happen. I haven't changed a thing. It was
> working perfectly yesterday. It really is bizarre. Please help. I have
> a couple of users that work remotely and depend on the VPN connection.
> And with it being the weekend many managers will dial in from home.
> Please please help (what a way to start the weekend).
>
> TIA,
>
> Jarryd
>