t***@live.com
2009-01-14 15:21:00 UTC
All,
I am trying to add the AD CS role for an enterprise subordinate CA in
Windows Server 2008 and am encountering the following error:
An error occurred when creating the new key container "XXX AD CA".
Please make sure the CSP is installed correctly or select another CSP.
Provider could not perform the action since the context was acquired
as silent. 0x80090022 (-2146893790)
The following role services were installed:
Certification Authority
I was able to successfully install and configure the root CA and
generate a certificate and CRL. Both have been published to Active
Directory and appear on the enterprise subordinate CA when executing
certutil -entinfo. A CAPolicy.inf file is present in the Windows
folder.
The enterprise subordinate CA is a member of the domain, and I am
logging on as a member of the Enterprise Admins group. An HSM is not
being used. All PKI VMs are virtual.
I have been able to successfully install and configure this is several
lab environments but am having problems in my staging environment.
When I look for the REQ file in the default location it is not there
so the CSP is not installed correctly. I have tried this on several
potential enterprise subordinate servers with the same result.
Has anyone encountered this error before? Any suggestions on options
to try to get past this error?
Any help would be greatly appreciated.
Thanks,
toshinorit
I am trying to add the AD CS role for an enterprise subordinate CA in
Windows Server 2008 and am encountering the following error:
An error occurred when creating the new key container "XXX AD CA".
Please make sure the CSP is installed correctly or select another CSP.
Provider could not perform the action since the context was acquired
as silent. 0x80090022 (-2146893790)
The following role services were installed:
Certification Authority
I was able to successfully install and configure the root CA and
generate a certificate and CRL. Both have been published to Active
Directory and appear on the enterprise subordinate CA when executing
certutil -entinfo. A CAPolicy.inf file is present in the Windows
folder.
The enterprise subordinate CA is a member of the domain, and I am
logging on as a member of the Enterprise Admins group. An HSM is not
being used. All PKI VMs are virtual.
I have been able to successfully install and configure this is several
lab environments but am having problems in my staging environment.
When I look for the REQ file in the default location it is not there
so the CSP is not installed correctly. I have tried this on several
potential enterprise subordinate servers with the same result.
Has anyone encountered this error before? Any suggestions on options
to try to get past this error?
Any help would be greatly appreciated.
Thanks,
toshinorit