Description

Active Directory Certificate Services could not find required registry information. The Active Directory Certificate Services may need to be reinstalled.

Message #

Active Directory Certificate Services could not find required registry information.  The Active Directory Certificate Services may need to be reinstalled.

Description

Active Directory Certificate Services could not find required registry information. The Active Directory Certificate Services may need to be reinstalled.

Description

Active Directory Certificate Services issued a certificate for request RequestId for SubjectName.

Message #

Active Directory Certificate Services issued a certificate for request %1 for %2.

Fields #

Description

Active Directory Certificate Services issued a certificate for request for .

Fields #

Description

Active Directory Certificate Services denied request RequestId because Reason. The request was for SubjectName.

Message #

Active Directory Certificate Services denied request %1 because %2.  The request was for %3.

Fields #

Description

Active Directory Certificate Services denied request because . The request was for .

Fields #

Description

Active Directory Certificate Services left request RequestId pending in the queue for SubjectName.

Message #

Active Directory Certificate Services left request %1 pending in the queue for %2.

Fields #

Description

Active Directory Certificate Services left request pending in the queue for .

Fields #

Description

The Active Directory Certificate Services did not start: Unable to load an external policy module.

Message #

The Active Directory Certificate Services did not start: Unable to load an external policy module.

Description

The Active Directory Certificate Services did not start: Unable to load an external policy module.

Description

Active Directory Certificate Services were unable to build a new certificate or certificate chain: ErrorCode.

Message #

Active Directory Certificate Services were unable to build a new certificate or certificate chain: %1.

Fields #

Description

Active Directory Certificate Services were unable to build a new certificate or certificate chain: .

Fields #

Description

Active Directory Certificate Services did not start: Version does not match certif.dll.

Message #

Active Directory Certificate Services did not start: Version does not match certif.dll.

Description

Active Directory Certificate Services did not start: Version does not match certif.dll.

Description

Active Directory Certificate Services did not start: Unable to initialize OLE: ErrorCode.

Message #

Active Directory Certificate Services did not start: Unable to initialize OLE: %1.

Fields #

Description

Active Directory Certificate Services did not start: Unable to initialize OLE: .

Fields #

Description

Active Directory Certificate Services did not start: Unable to initialize the database connection for Name. CACommonName.

Message #

Active Directory Certificate Services did not start: Unable to initialize the database connection for %1.  %2.

Fields #

Example Event #

{
  "system": {
    "provider": "Microsoft-Windows-CertificationAuthority",
    "guid": "6A71D062-9AFE-4F35-AD08-52134F85DFB9",
    "event_source_name": "",
    "event_id": 17,
    "version": 0,
    "level": 2,
    "task": 0,
    "opcode": 0,
    "keywords": 9223372036854775808,
    "time_created": "2026-03-13T23:06:28.978789+00:00",
    "event_record_id": 4237,
    "correlation": {},
    "execution": {
      "process_id": 13508,
      "thread_id": 10540
    },
    "channel": "Application",
    "computer": "LAB-DC01.ludus.domain",
    "security": {
      "user_id": "S-1-5-18"
    }
  },
  "event_data": {
    "Name": "MSG_E_DB_INIT_FAILED",
    "CACommonName": "EvtGen-Root-CA",
    "ErrorCode": "Certificate service has been suspended for a database restore operation. 0x80094006 (-2146877434 CERTSRV_E_SERVER_SUSPENDED)"
  },
  "message": ""
}

Description

Active Directory Certificate Services did not start: Unable to initialize the database connection for . .

Fields #

Message #

Active Directory Certificate Services did not start: The Subject Name Template string in the registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\CertSvc\Configuration\%1\SubjectTemplate is invalid.  An example of a valid string is: CommonName OrganizationalUnit Organization Locality State Country

Fields #

Fields #

Message #

Active Directory Certificate Services did not start: The Certificate Date Validity Period string in the registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\CertSvc\Configuration\%1\ValidityPeriod is invalid.  Valid strings are "Seconds", "Minutes", "Hours", "Days", "Weeks", "Months" and "Years".

Fields #

Fields #

Description

Active Directory Certificate Services could not process request Name due to an error: RequestId. The request was for ErrorCode.

Message #

Active Directory Certificate Services could not process request %1 due to an error: %2.  The request was for %3.

Fields #

Example Event #

{
  "system": {
    "provider": "Microsoft-Windows-CertificationAuthority",
    "guid": "6A71D062-9AFE-4F35-AD08-52134F85DFB9",
    "event_source_name": "",
    "event_id": 21,
    "version": 0,
    "level": 2,
    "task": 0,
    "opcode": 0,
    "keywords": 9223372036854775808,
    "time_created": "2026-03-13T20:24:03.969860+00:00",
    "event_record_id": 3714,
    "correlation": {},
    "execution": {
      "process_id": 9432,
      "thread_id": 6164
    },
    "channel": "Application",
    "computer": "LAB-DC01.ludus.domain",
    "security": {
      "user_id": "S-1-5-18"
    }
  },
  "event_data": {
    "Name": "MSG_E_PROCESS_REQUEST_FAILED",
    "RequestId": "1",
    "ErrorCode": "The request's current status does not allow this operation. 0x80094003 (-2146877437 CERTSRV_E_BAD_REQUESTSTATUS)",
    "SubjectName": "CN=EvtGen-Root-CA, DC=ludus, DC=domain"
  },
  "message": ""
}

Description

Active Directory Certificate Services could not process request due to an error: . The request was for .

Fields #

Description

Active Directory Certificate Services could not process request RequestId due to an error: ErrorCode. The request was for SubjectName. Additional information: AdditionalInformation.

Message #

Active Directory Certificate Services could not process request %1 due to an error: %2.  The request was for %3.  Additional information: %4

Fields #

Description

Active Directory Certificate Services could not process request due to an error: . The request was for . Additional information.

Fields #

Message #

Active Directory Certificate Services could not process request %1 due to an error: %2.  The request was for %3.  The certificate would contain an encoded length that is potentially incompatible with older enrollment software.  Submit a new request using different length input data for the following field: %4

Fields #

Fields #

Description

Active Directory Certificate Services revoked the certificate for request RequestId for SubjectName.

Message #

Active Directory Certificate Services revoked the certificate for request %1 for %2.

Fields #

Description

Active Directory Certificate Services revoked the certificate for request for .

Fields #

Description

Active Directory Certificate Services for Name was started.CACommonNameDCSpecifier.

Message #

Active Directory Certificate Services for %1 was started.%2%3

Fields #

Example Event #

{
  "system": {
    "provider": "Microsoft-Windows-CertificationAuthority",
    "guid": "6A71D062-9AFE-4F35-AD08-52134F85DFB9",
    "event_source_name": "",
    "event_id": 26,
    "version": 0,
    "level": 4,
    "task": 0,
    "opcode": 0,
    "keywords": 9223372036854775808,
    "time_created": "2026-03-13T20:16:52.465174+00:00",
    "event_record_id": 3703,
    "correlation": {},
    "execution": {
      "process_id": 9432,
      "thread_id": 1156
    },
    "channel": "Application",
    "computer": "LAB-DC01.ludus.domain",
    "security": {
      "user_id": "S-1-5-18"
    }
  },
  "event_data": {
    "Name": "MSG_I_SERVER_STARTED",
    "CACommonName": "EvtGen-Root-CA",
    "DCSpecifier": "  DC=",
    "DCName": "LAB-DC01.ludus.domain"
  },
  "message": ""
}

Description

Active Directory Certificate Services for was started.

Fields #

Message #

Active Directory Certificate Services did not start: Hierarchical setup is incomplete.  Use the request file in %1.req to obtain a certificate for this Certificate Server, and use the Certification Authority administration tool to install the new certificate and complete the installation.

Fields #

Fields #

Description

Active Directory Certificate Services did not start: Could not create the Certificate Server service thread for CACommonName. ErrorCode.

Message #

Active Directory Certificate Services did not start: Could not create the Certificate Server service thread for %1.  %2.

Fields #

Description

Active Directory Certificate Services did not start: Could not create the Certificate Server service thread for . .

Fields #

Description

Active Directory Certificate Services did not start: Could not initialize RPC for CACommonName. ErrorCode.

Message #

Active Directory Certificate Services did not start: Could not initialize RPC for %1.  %2.

Fields #

Description

Active Directory Certificate Services did not start: Could not initialize RPC for . .

Fields #

Description

Active Directory Certificate Services did not start: Could not initialize OLE for CACommonName. ErrorCode.

Message #

Active Directory Certificate Services did not start: Could not initialize OLE for %1.  %2.

Fields #

Description

Active Directory Certificate Services did not start: Could not initialize OLE for . .

Fields #

Description

Active Directory Certificate Services for Name was stopped.

Message #

Active Directory Certificate Services for %1 was stopped.

Fields #

Example Event #

{
  "system": {
    "provider": "Microsoft-Windows-CertificationAuthority",
    "guid": "6A71D062-9AFE-4F35-AD08-52134F85DFB9",
    "event_source_name": "",
    "event_id": 38,
    "version": 0,
    "level": 4,
    "task": 0,
    "opcode": 0,
    "keywords": 9223372036854775808,
    "time_created": "2026-03-13T23:05:17.631827+00:00",
    "event_record_id": 4209,
    "correlation": {},
    "execution": {
      "process_id": 3920,
      "thread_id": 3924
    },
    "channel": "Application",
    "computer": "LAB-DC01.ludus.domain",
    "security": {
      "user_id": "S-1-5-18"
    }
  },
  "event_data": {
    "Name": "MSG_I_SERVER_STOPPED",
    "CACommonName": "EvtGen-Root-CA"
  },
  "message": ""
}

Description

Active Directory Certificate Services for was stopped.

Fields #

Message #

Active Directory Certificate Services did not start: The Certification Authority DCOM class for %1 could not be registered.  %2.  Use the services administration tool to change the Certification Authority logon context.

Fields #

Fields #

Description

Active Directory Certificate Services did not start: Could not initialize DCOM class factories for CACommonName. ErrorCode.

Message #

Active Directory Certificate Services did not start: Could not initialize DCOM class factories for %1.  %2.

Fields #

Description

Active Directory Certificate Services did not start: Could not initialize DCOM class factories for . .

Fields #

Description

Could not build a certificate chain for CA certificate CACertIdentifier for CACommonName. ErrorCode.

Message #

Could not build a certificate chain for CA certificate %3 for %1.  %2.

Fields #

Description

Could not build a certificate chain for CA certificate for . .

Fields #

Description

The "PolicyModuleDescription" Policy Module "MethodName" method caused an exception at address ExceptionAddress. The exception code is ExceptionCode.

Message #

The "%1" Policy Module "%2" method caused an exception at address %4.  The exception code is %3.

Fields #

Description

The "PolicyModuleDescription" Policy Module "MethodName" method caused an exception at address ExceptionAddress. The exception code is ExceptionCode.

Fields #

Description

The "Name" Policy Module "PolicyModuleDescription" method returned an error. param4 The returned status code is MethodName. ErrorCode.

Message #

The "%1" Policy Module "%2" method returned an error. %5 The returned status code is %3.  %4

Fields #

Example Event #

{
  "system": {
    "provider": "Microsoft-Windows-CertificationAuthority",
    "guid": "6A71D062-9AFE-4F35-AD08-52134F85DFB9",
    "event_source_name": "",
    "event_id": 44,
    "version": 0,
    "level": 2,
    "task": 0,
    "opcode": 0,
    "keywords": 9223372036854775808,
    "time_created": "2026-03-13T21:48:47.682649+00:00",
    "event_record_id": 3798,
    "correlation": {},
    "execution": {
      "process_id": 3920,
      "thread_id": 3924
    },
    "channel": "Application",
    "computer": "LAB-DC01.ludus.domain",
    "security": {
      "user_id": "S-1-5-18"
    }
  },
  "event_data": {
    "Name": "MSG_E_POLICY_ERROR",
    "PolicyModuleDescription": "Windows default",
    "MethodName": "Initialize",
    "ErrorCode": "0x8007054b (1355)",
    "param4": "The Active Directory containing the Certification Authority could not be contacted.\r\n",
    "ErrorString": "The specified domain either does not exist or could not be contacted."
  },
  "message": ""
}

Description

The "PolicyModuleDescription" Policy Module "MethodName" method returned an error. ErrorString The returned status code is ErrorCode. param4.

Fields #

Description

The "ExitModuleDescription" Exit Module "MethodName" method caused an exception at address ExceptionAddress. The exception code is ExceptionCode.

Message #

The "%1" Exit Module "%2" method caused an exception at address %4.  The exception code is %3.

Fields #

Description

The "ExitModuleDescription" Exit Module "MethodName" method caused an exception at address ExceptionAddress. The exception code is ExceptionCode.

Fields #

Description

The "ExitModuleDescription" Exit Module "MethodName" method returned an error. ErrorString The returned status code is ErrorCode. param4.

Message #

The "%1" Exit Module "%2" method returned an error. %5 The returned status code is %3.  %4

Fields #

Description

The "ExitModuleDescription" Exit Module "MethodName" method returned an error. ErrorString The returned status code is ErrorCode. param4.

Fields #

Description

Revocation status for a certificate in the chain for CA certificate CACertIdentifier for CACommonName could not be verified because a server is currently unavailable. ErrorCode.

Message #

Revocation status for a certificate in the chain for CA certificate %3 for %1 could not be verified because a server is currently unavailable.  %2.

Fields #

Description

Revocation status for a certificate in the chain for CA certificate for could not be verified because a server is currently unavailable. .

Fields #

Description

A certificate in the chain for CA certificate CACertIdentifier for CACommonName could not be verified because no information is available describing how to check the revocation status. ErrorCode.

Message #

A certificate in the chain for CA certificate %3 for %1 could not be verified because no information is available describing how to check the revocation status.  %2.

Fields #

Description

A certificate in the chain for CA certificate for could not be verified because no information is available describing how to check the revocation status. .

Fields #

Description

A certificate in the chain for CA certificate CACertIdentifier for CACommonName has been revoked. ErrorCode.

Message #

A certificate in the chain for CA certificate %3 for %1 has been revoked.  %2.

Fields #

Description

A certificate in the chain for CA certificate for has been revoked. .

Fields #

Description

Active Directory Certificate Services issued a certificate for request RequestId for SubjectName. Additional information: AdditionalInformation.

Message #

Active Directory Certificate Services issued a certificate for request %1 for %2.  Additional information: %3

Fields #

Description

Active Directory Certificate Services issued a certificate for request for . Additional information.

Fields #

Description

Active Directory Certificate Services denied request Name because RequestId. The request was for Reason. Additional information: SubjectName.

Message #

Active Directory Certificate Services denied request %1 because %2.  The request was for %3.  Additional information: %4

Fields #

Example Event #

{
  "system": {
    "provider": "Microsoft-Windows-CertificationAuthority",
    "guid": "6A71D062-9AFE-4F35-AD08-52134F85DFB9",
    "event_source_name": "",
    "event_id": 53,
    "version": 0,
    "level": 3,
    "task": 0,
    "opcode": 0,
    "keywords": 9223372036854775808,
    "time_created": "2026-03-13T20:16:58.388339+00:00",
    "event_record_id": 3704,
    "correlation": {},
    "execution": {
      "process_id": 9432,
      "thread_id": 10184
    },
    "channel": "Application",
    "computer": "LAB-DC01.ludus.domain",
    "security": {
      "user_id": "S-1-5-18"
    }
  },
  "event_data": {
    "Name": "MSG_DN_CERT_DENIED_WITH_INFO",
    "RequestId": "2",
    "Reason": "The request contains no certificate template information. 0x80094801 (-2146875391 CERTSRV_E_NO_CERT_TYPE)",
    "SubjectName": "CN=EvtGenTestCert, O=Test, L=Test, S=Test, C=US",
    "AdditionalInformation": "Denied by Policy Module  0x80094801, The request does not contain a certificate template extension or the CertificateTemplate request attribute.\r\n"
  },
  "message": ""
}

Description

Active Directory Certificate Services denied request because . The request was for . Additional information.

Fields #

Description

Active Directory Certificate Services left request RequestId pending in the queue for SubjectName. Additional information: AdditionalInformation.

Message #

Active Directory Certificate Services left request %1 pending in the queue for %2.  Additional information: %3

Fields #

Description

Active Directory Certificate Services left request pending in the queue for . Additional information.

Fields #

Description

Active Directory Certificate Services denied request RequestId. The request was for SubjectName.

Message #

Active Directory Certificate Services denied request %1.  The request was for %2.

Fields #

Description

Active Directory Certificate Services denied request . The request was for .

Fields #

Description

Active Directory Certificate Services denied request RequestId. The request was for SubjectName. Additional information: AdditionalInformation.

Message #

Active Directory Certificate Services denied request %1.  The request was for %2.  Additional information: %3

Fields #

Description

Active Directory Certificate Services denied request . The request was for . Additional information.

Fields #

Description

A certificate in the chain for CA certificate CACertIdentifier for CACommonName has expired. ErrorCode.

Message #

A certificate in the chain for CA certificate %3 for %1 has expired.  %2.

Fields #

Description

A certificate in the chain for CA certificate for has expired. .

Fields #

Description

Active Directory Certificate Services did not start: Could not connect to the Active Directory for CACommonName. ErrorCode.

Message #

Active Directory Certificate Services did not start: Could not connect to the Active Directory for %1.  %2.

Fields #

Description

Active Directory Certificate Services did not start: Could not connect to the Active Directory for . .

Fields #

Message #

Active Directory Certificate Services refused to process an extremely long request from %1. This may indicate a denial-of-service attack. If the request was rejected in error, modify the MaxIncomingMessageSize registry parameter via 
certutil -setreg CA\MaxIncomingMessageSize <bytes>.

Unless verbose logging is enabled, this error will not be logged again for 20 minutes.

Fields #

Fields #

Description

Active Directory Certificate Services had problems loading valid CRL publication values and has reset the CRL publication to its default settings.

Message #

Active Directory Certificate Services had problems loading valid CRL publication values and has reset the CRL publication to its default settings.

Description

Active Directory Certificate Services had problems loading valid CRL publication values and has reset the CRL publication to its default settings.

Description

Active Directory Certificate Services did not start: CACommonName ErrorCode.

Message #

Active Directory Certificate Services did not start: %1 %2.

Fields #

Description

Active Directory Certificate Services did not start: .

Fields #

Description

Active Directory Certificate Services cannot publish enrollment access changes to Active Directory.

Message #

Active Directory Certificate Services cannot publish enrollment access changes to Active Directory.

Description

Active Directory Certificate Services cannot publish enrollment access changes to Active Directory.

Description

Active Directory Certificate Services could not publish a Base CRL for key Name to the following location: CAKeyIdentifier. URL.param4param5.

Message #

Active Directory Certificate Services could not publish a Base CRL for key %1 to the following location: %2.  %3.%5%6

Fields #

Example Event #

{
  "system": {
    "provider": "Microsoft-Windows-CertificationAuthority",
    "guid": "6A71D062-9AFE-4F35-AD08-52134F85DFB9",
    "event_source_name": "",
    "event_id": 65,
    "version": 0,
    "level": 2,
    "task": 0,
    "opcode": 0,
    "keywords": 9223372036854775808,
    "time_created": "2026-03-13T23:06:22.153985+00:00",
    "event_record_id": 4222,
    "correlation": {},
    "execution": {
      "process_id": 13036,
      "thread_id": 13344
    },
    "channel": "Application",
    "computer": "LAB-DC01.ludus.domain",
    "security": {
      "user_id": "S-1-5-18"
    }
  },
  "event_data": {
    "Name": "MSG_E_BASE_CRL_PUBLICATION",
    "CAKeyIdentifier": "0",
    "URL": "http://crl.ludus.domain/crldist/EvtGen-Root-CA.crl",
    "ErrorMessageText": "The specified path is invalid. 0x800700a1 (WIN32/HTTP: 161 ERROR_BAD_PATHNAME)",
    "param4": "",
    "param5": "",
    "AdditionalErrorMessage": ""
  },
  "message": ""
}

Description

Active Directory Certificate Services could not publish a Base CRL for key to the following location: . .

Fields #

Description

Active Directory Certificate Services could not publish a Delta CRL for key CAKeyIdentifier to the following location: URL. ErrorMessageText.param5AdditionalErrorMessage.

Message #

Active Directory Certificate Services could not publish a Delta CRL for key %1 to the following location: %2.  %3.%5%6

Fields #

Description

Active Directory Certificate Services could not publish a Delta CRL for key to the following location: . .

Fields #

Description

Active Directory Certificate Services made NumberOfAttempts attempts to publish a CRL and will stop publishing attempts until the next CRL is generated.

Message #

Active Directory Certificate Services made %1 attempts to publish a CRL and will stop publishing attempts until the next CRL is generated.

Fields #

Description

Active Directory Certificate Services made attempts to publish a CRL and will stop publishing attempts until the next CRL is generated.

Fields #

Description

Active Directory Certificate Services successfully published Base CRL(s).

Message #

Active Directory Certificate Services successfully published Base CRL(s).

Description

Active Directory Certificate Services successfully published Base CRL(s).

Description

Active Directory Certificate Services successfully published Delta CRL(s).

Message #

Active Directory Certificate Services successfully published Delta CRL(s).

Description

Active Directory Certificate Services successfully published Delta CRL(s).

Description

Active Directory Certificate Services successfully published Base and Delta CRL(s).

Message #

Active Directory Certificate Services successfully published Base and Delta CRL(s).

Description

Active Directory Certificate Services successfully published Base and Delta CRL(s).

Description

Active Directory Certificate Services successfully published Base CRL(s) to server HostName.

Message #

Active Directory Certificate Services successfully published Base CRL(s) to server %1.

Fields #

Description

Active Directory Certificate Services successfully published Base CRL(s) to server .

Fields #

Description

Active Directory Certificate Services successfully published Delta CRL(s) to server HostName.

Message #

Active Directory Certificate Services successfully published Delta CRL(s) to server %1.

Fields #

Description

Active Directory Certificate Services successfully published Delta CRL(s) to server .

Fields #

Description

Active Directory Certificate Services successfully published Base and Delta CRL(s) to server HostName.

Message #

Active Directory Certificate Services successfully published Base and Delta CRL(s) to server %1.

Fields #

Description

Active Directory Certificate Services successfully published Base and Delta CRL(s) to server .

Fields #

Description

Active Directory Certificate Services could not publish a Base CRL for key CAKeyIdentifier to the following location on server HostName: URL. ErrorMessageText.param5AdditionalErrorMessage.

Message #

Active Directory Certificate Services could not publish a Base CRL for key %1 to the following location on server %4: %2.  %3.%5%6

Fields #

Description

Active Directory Certificate Services could not publish a Base CRL for key to the following location on server : . .

Fields #

Description

Active Directory Certificate Services could not publish a Delta CRL for key CAKeyIdentifier to the following location on server HostName: URL. ErrorMessageText.param5AdditionalErrorMessage.

Message #

Active Directory Certificate Services could not publish a Delta CRL for key %1 to the following location on server %4: %2.  %3.%5%6

Fields #

Description

Active Directory Certificate Services could not publish a Delta CRL for key to the following location on server : . .

Fields #

Description

The "PolicyModuleDescription" Policy Module logged the following information: InformationMessage.

Message #

The "%1" Policy Module logged the following information: %2

Fields #

Description

The "PolicyModuleDescription" Policy Module logged the following information: InformationMessage.

Fields #

Description

The "Name" Policy Module logged the following warning: PolicyModuleDescription.

Message #

The "%1" Policy Module logged the following warning: %2

Fields #

Example Event #

{
  "system": {
    "provider": "Microsoft-Windows-CertificationAuthority",
    "guid": "6A71D062-9AFE-4F35-AD08-52134F85DFB9",
    "event_source_name": "",
    "event_id": 77,
    "version": 0,
    "level": 3,
    "task": 0,
    "opcode": 0,
    "keywords": 9223372036854775808,
    "time_created": "2026-03-13T20:24:03.481197+00:00",
    "event_record_id": 3713,
    "correlation": {},
    "execution": {
      "process_id": 9432,
      "thread_id": 6164
    },
    "channel": "Application",
    "computer": "LAB-DC01.ludus.domain",
    "security": {
      "user_id": "S-1-5-18"
    }
  },
  "event_data": {
    "Name": "MSG_POLICY_LOG_WARNING",
    "PolicyModuleDescription": "Windows default",
    "WarningMessage": "The Active Directory connection to LAB-DC01.ludus.domain has been reestablished to LAB-DC01.ludus.domain.\r\n"
  },
  "message": ""
}

Description

The "PolicyModuleDescription" Policy Module logged the following warning: WarningMessage.

Fields #

Description

The "PolicyModuleDescription" Policy Module logged the following error: ErrorMessage.

Message #

The "%1" Policy Module logged the following error: %2

Fields #

Description

The "PolicyModuleDescription" Policy Module logged the following error: ErrorMessage.

Fields #

Description

Active Directory Certificate Services could not publish a Certificate for request RequestId to the following location: DN. ErrorMessageText.param5AdditionalErrorMessage.

Message #

Active Directory Certificate Services could not publish a Certificate for request %1 to the following location: %2.  %3.%5%6

Fields #

Description

Active Directory Certificate Services could not publish a Certificate for request to the following location: . .

Fields #

Description

Active Directory Certificate Services could not publish a Certificate for request RequestId to the following location on server HostName: DN. ErrorMessageText.param5AdditionalErrorMessage.

Message #

Active Directory Certificate Services could not publish a Certificate for request %1 to the following location on server %4: %2.  %3.%5%6

Fields #

Description

Active Directory Certificate Services could not publish a Certificate for request to the following location on server : . .

Fields #

Description

Active Directory Certificate Services key archival is only supported on Advanced Server. ErrorCode.

Message #

Active Directory Certificate Services key archival is only supported on Advanced Server.  %1

Fields #

Description

Active Directory Certificate Services key archival is only supported on Advanced Server.

Fields #

Description

Active Directory Certificate Services could only verify NumberOfValidKRACerts of RequiredNumberOfValidKRACerts key recovery certificates required to enable private key archival. Requests to archive private keys will not be accepted.

Message #

Active Directory Certificate Services could only verify %1 of %2 key recovery certificates required to enable private key archival.  Requests to archive private keys will not be accepted.

Fields #

Description

Active Directory Certificate Services could only verify of key recovery certificates required to enable private key archival. Requests to archive private keys will not be accepted.

Fields #

Description

Active Directory Certificate Services encountered an error loading key recovery certificates. Requests to archive private keys will not be accepted. Name.

Message #

Active Directory Certificate Services encountered an error loading key recovery certificates.  Requests to archive private keys will not be accepted.  %1

Fields #

Example Event #

{
  "system": {
    "provider": "Microsoft-Windows-CertificationAuthority",
    "guid": "6A71D062-9AFE-4F35-AD08-52134F85DFB9",
    "event_source_name": "",
    "event_id": 83,
    "version": 0,
    "level": 2,
    "task": 0,
    "opcode": 0,
    "keywords": 9223372036854775808,
    "time_created": "2026-03-13T23:15:53.245767+00:00",
    "event_record_id": 4309,
    "correlation": {},
    "execution": {
      "process_id": 3800,
      "thread_id": 11792
    },
    "channel": "Application",
    "computer": "LAB-DC01.ludus.domain",
    "security": {
      "user_id": "S-1-5-18"
    }
  },
  "event_data": {
    "Name": "MSG_E_LOADING_KRA_CERTS",
    "ErrorCode": "The system cannot find the file specified. 0x80070002 (WIN32: 2 ERROR_FILE_NOT_FOUND)"
  },
  "message": ""
}

Description

Active Directory Certificate Services encountered an error loading key recovery certificates. Requests to archive private keys will not be accepted.

Fields #

Description

Active Directory Certificate Services will not use key recovery certificate KRACertIndex because it could not be verified for use as a Key Recovery Agent. KRACertSubjectName ErrorCode.

Message #

Active Directory Certificate Services will not use key recovery certificate %1 because it could not be verified for use as a Key Recovery Agent.  %2  %3

Fields #