CDP and DeltaCRL locations unable to download

-

i want apologize ahead of time. first time posting tread.

i having problems getting pki display status ok locations. running windows enterprise , windows 7 professional on clients.

 my ldap:/// locations ok cdp & deltacrl locations status unable download. actual errors listed as

deltacrl location #2      unable download         http:/scsihq-dc01.corp-hq.scsi-ga.com/certenroll//corp-hq-scsihq-dc01-ca(1)+.crl

deltacrl location #3      unable download         file://scsihq-dc01.corp-hq-ga.com/certenroll//corp-hq-scsihq-dc01-ca(1)+.crl

cdp location #2             unable download         http:/scsihq-dc01.corp-hq.scsi-ga.com/certenroll//corp-hq-scsihq-dc01-ca(1).crl

cdp location #3             unable download         file://scsihq-dc01.corp-hq-ga.com/certenroll//corp-hq-scsihq-dc01-ca(1).crl

things have done:

- have set vaule true double spacing in iis7 , have restarted , no luck

- have renewed ca certificate , when did have (2) ca. certificate #0 (old) , certificate #1 (new) showing under ca properties #1 1 listed active ca on server.

- have changed extensions under ca properties , still unable rid of errors.

- error when try past url in browser , go site. message showing url address , physical address , different.

 deltacrl location #2 

requested url http://scsihq-dc01.corp-hq.scsi-ga.com:80/certenroll/corp-hq-scsihq-dc01-ca(1)+.crl
physical path

c:\inetpub\wwwroot\certenroll\corp-hq-scsihq-dc01-ca(1)+.crl

cdp location #2

 

requested url http://scsihq-dc01.corp-hq.scsi-ga.com:80/certenroll/corp-hq-scsihq-dc01-ca(1).crl
physical path c:\inetpub\wwwroot\certenroll\corp-hq-scsihq-dc01-ca(1).crl

i have gone these physical path , there nothing in these locations.

- have read post on cdp location unableto download , numerous ones there aftere , still no luck.

- have went , re-installes online responder , pki step step. ad cs step step , online responder trouble shooting.

i have went actual folder locations ato verify vdir , file locations. third cdp , deltacrl location did not appear in config until after had renewed ca. thinking on kill pki , need 2 locations. 

i appreciate anysite can offer me resolve these issues.

i have few more issues talke 1 @ time.

 

thank you

when cdp paths working correctly, browser attempt download file when use url.  recommend use ie verify crl downloadable.

i typically use different web site and/or machine when publish cdp because might want offload onto machine or make accessible outside environment.

if point deltas not work, check double escaping feature of website in iis.

hth - fr3dd

fr3dd


Windows Server  >  Security



Comments

Post a Comment

Popular posts from this blog

Error: 0x80073701 when trying to add Print Services Role in Windows 2012 Standard

-
hello, i'm getting error when trying add print services role in windows 2012 standard. i'm getting same error whether use gui or powershell. this new server install. the powershell error follows: add-windowsfeature : request add or remove features on specified server failed. installation of 1 or more roles, role services, or features failed. the referenced assembly not found. error: 0x80073701 at line:1 char:1 + add-windowsfeature print-services + ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~     + categoryinfo          : invalidoperation: (@{vhd=; credent...name=localhost}:psobject) [install-windowsfeature],     exception     + fullyqualifiederrorid : dismapi_error__failed_to_enable_updates,microsoft.windows.servermanager.commands.addwind    owsfeaturecommand success restart needed exit code      feature result ------- -------------- ---------      -------------- false   no             failed         {} issue appreciated. hi, i think should st
Read more

Disconnecting from a Windows Server 2012 R2 file sharing session on a Windows 7,8,10 machine

-
i've been trying disconnect server while , haven't been able to. there quick way this? i've used net session , net user , work sometime never consistent. can task? hi yrusad, thanks post. does work when check “computer management > system tools > shared folders > open files/sessions”. directly manage from gui. and based on knowledge, quick way mentioned net session /delete /y. mean never consistent? best regards, mary please remember mark replies answers if , unmark them if provide no help. if have feedback technet subscriber support, contact tnmff@microsoft.com . Windows Server  >  Windows Server 2012 General
Read more

Event ID 64,77,1008 Certificates Events Windows Server 2008, 2008R2

-
hi guys, i need event ids. event id 64 clear - expired certificate. problem computers have new certificate ca of them keep old one. can remove them certificate store on computers or should check before? event id 77 - 1 strange me. warning , in same time don't see suspicious: "windows default" policy module logged following warning: active directory connection <domain controller name> has been reestablished <domain controller name>. have 4 dcs. should check or ignore these messages. event id 1008 - "certificate services client: credential roaming not performed because number of tokens in local store has exceeded limit." - i've checked articles credential roaming i'm not sure should do. if give tips , answers, great. in advance. hi, event id 64 clear - expired certificate. problem computers have new certificate ca of them keep old one. can remove them certificate store on computers or should check before? i assume these
Read more