Cannot Archive Private Key

Question

Cannot Archive Private Key

I have setup a Public Key Infrastructure on a server farm consisting of Windows Server 2013 r2 machines and configured auto renrollment for user certificatiates. When logging into a machine I seeing the error message leading me to beleive something is setup wrong.

On the client machine afer login the event log shows;

Cannot archive private key. The certification authority is not configured for key archival.

and

Cannot archive private key. The certification authority is not configured for key archival. 0x8009400a (-2146877430 CERTSRV_E_KEY_ARCHIVAL_NOT_CONFIGURED)

In the certsrv mmc tool I see a correspondings (i think) messages with the same errors.

What should I be looking at to fix this so my user certificates can be successfully auto-enrolled.

Please note this is the first time I have setup PKI so I'm new at this type of thing.

Thanks for the help

windows

pki

asked on Server Fault Oct 10, 2017 by

ChiliYago • edited Oct 25, 2017 by

ChiliYago

0 Answers

Nobody has answered this question yet.

User contributions licensed under CC BY-SA 3.0