Monitor unlimited number of servers
Filter log events
Create email and web-based reports

Direct access to Microsoft articles
Customized keywords for major search engines
Access to premium content

Event ID: 80 Source: CertSvc

Source
Level
Description
Certificate Services could not publish a Certificate for request 11 to the following location on server DC.PKI.DOM: CN=administrator,CN=Userver,DC=pki,DC=dom.
Insufficient access rights to perform the operation.
Comments
 
See WITP78286 for information about this event.
Microsoft article ME300532 is a good starting point. If you have already verified your CA is a member of the Cert Publishers group, the next step is to verify the Cert Publishers group has permissions on the user account it is trying to publish to. Specifically, the Cert Publishers group needs ''Read userCertificate'' and ''Write userCertificate'' permissions. In my case, the user account that the CA was trying to publish to was also a domain administrative account. In this case, the necessary permissions were being removed by the AdminSDHolder. If you need to publish certificates to accounts that are also administrative accounts, the steps in article ME281271 will need to be taken as well. Alternatively, you may remove the account from the administrative group in question and reset default permissions on the user account.
Windows 2000 Enterprise CAs are not automatically added to the Certificate Publishers group in a Windows Server 2003 domain. See ME300532 for more details.

Windows Event Log Analysis Splunk App

Build a great reporting interface using Splunk, one of the leaders in the Security Information and Event Management (SIEM) field, linking the collected Windows events to www.eventid.net.

Read more...

 

Cisco ASA Log Analyzer Splunk App

Obtain enhanced visibility into Cisco ASA firewall logs using the free Firegen for Cisco ASA Splunk App. Take advantage of dashboards built to optimize the threat analysis process.

Read more...