Autoenrollment is not working.

Group Policy says that autoenrollment is switched on but the autoenrollment function is not working. None of your Root, Issuing or Machine certificates are enrolled.

If you try to trigger the autoenrollment process you get an error.
certutil -pulse
CertUtil: -pulse command FAILED: 0x80070002 (WIN32: 2)
CertUtil: The system cannot find the file specified.

In som cases this is due to a folder missing. Check if the folder C:\Windows\System32\Logfiles\Scm exists. If not create it and restart the computer


This entry was posted in PKI, Windows. Bookmark the permalink.