How to Remove the Active Directory Certificate Services for Event Error ID: 6, 13, 82
Summary
As only for Testing, not need the Active Directory Certificate Services any more, best to remove for these errors:
Followed the below references to clean it up
Processes: Remove CA Objects
1. Active Directory Sites and Services (dssite.msc)
2. View --> Show Service Mode
3. Services --> Public Key Services --> AIA
Remove the certificateAuthority object
4. Services --> Public Key Services --> Certification Authorities
Remove the certificationAuthority object
5. Servies --> Public Key Services --> Enrollment Services
Remove the pKIEnrollmentService object
6. Services --> Public Key Services --> KRA
Remove the msPKI-PrivateKeyRecoveryAgent object
7. Because of No Any other AD CS Servers, remove all Certificate Templates
Services --> Publiuc Key Services --> Certificate Templates
Remove all the Certificate Templates
8. certutil -dcinfo delteBad
9. gpupdate /force
Appendix: Event Logs: 6, 13, 82
Update
As only for Testing, not need the Active Directory Certificate Services any more, best to remove for these errors:
Event ID: 6
Level: Error
Automatic certificate enrollment for local system failed (0x800706ba) The RPC server is unavailable
Level: Error
Automatic certificate enrollment for local system failed (0x800706ba) The RPC server is unavailable
Event ID: 13
Level: Error
Certificate enrollment for Local system failed to enroll for a DomainController certificate with request ID N/A from server-a.office.org\test (The RPC server is unavailable. 0x800706ba (WIN32: 1722 RPC_S_SERVER_UNAVAILABLE)).
Level: Error
Certificate enrollment for Local system failed to enroll for a DomainController certificate with request ID N/A from server-a.office.org\test (The RPC server is unavailable. 0x800706ba (WIN32: 1722 RPC_S_SERVER_UNAVAILABLE)).
Event ID: 82
Level: Error
Certificate enrollment for Local system failed in authentication to all urls for enrollment server associated with policy id: {B20A1610-F46B-4C9E-8FE0-11558D4275D6} (The RPC server is unavailable. 0x800706ba (WIN32: 1722 RPC_S_SERVER_UNAVAILABLE)). Failed to enroll for template: DomainController
Level: Error
Certificate enrollment for Local system failed in authentication to all urls for enrollment server associated with policy id: {B20A1610-F46B-4C9E-8FE0-11558D4275D6} (The RPC server is unavailable. 0x800706ba (WIN32: 1722 RPC_S_SERVER_UNAVAILABLE)). Failed to enroll for template: DomainController
Followed the below references to clean it up
Processes: Remove CA Objects
Note: To determine the CACommonName of the CA
Run "certutil"
Run "certutil"
1. Active Directory Sites and Services (dssite.msc)
2. View --> Show Service Mode
3. Services --> Public Key Services --> AIA
CN=AIA,CN=Public Key Services,CN=Services,CN=Configuration,DC=ForestRootDomain
Remove the certificateAuthority object
4. Services --> Public Key Services --> Certification Authorities
CN=Certification Authorities,CN=Public Key Services,CN=Services,CN=Configuration,DC=ForestRootDomain
Remove the certificationAuthority object
5. Servies --> Public Key Services --> Enrollment Services
CN=Enrollment Services,CN=Public Key Services,CN=Services,CN=Configuration,DC=ForestRootDomain
Remove the pKIEnrollmentService object
6. Services --> Public Key Services --> KRA
CN=KRA,CN=Public Key Services,CN=Services,CN=Configuration,DC=ForestRootDomain
Remove the msPKI-PrivateKeyRecoveryAgent object
7. Because of No Any other AD CS Servers, remove all Certificate Templates
Services --> Publiuc Key Services --> Certificate Templates
CN=Certificate Templates,CN=Public Key Services,CN=Services,CN=Configuration,DC=ForestRootDomain
Remove all the Certificate Templates
Note: Only the Certificate Templates not the CN=Certificate Templates
Note: Must not delete all the Certificate Templeates unless all of the Certificate Authorities have been removed
8. certutil -dcinfo delteBad
9. gpupdate /force
Appendix: Event Logs: 6, 13, 82
Log Name: Application
Source: Microsoft-Windows-CertificateServicesClient-AutoEnrollment
Date: 22/1/2019 2:36:58 PM
Event ID: 6
Task Category: None
Level: Error
Keywords: Classic
User: N/A
Computer: Server-A.office.org
Description:
Automatic certificate enrollment for local system failed (0x800706ba) The RPC server is unavailable.
Source: Microsoft-Windows-CertificateServicesClient-AutoEnrollment
Date: 22/1/2019 2:36:58 PM
Event ID: 6
Task Category: None
Level: Error
Keywords: Classic
User: N/A
Computer: Server-A.office.org
Description:
Automatic certificate enrollment for local system failed (0x800706ba) The RPC server is unavailable.
Log Name: Application
Source: Microsoft-Windows-CertificateServicesClient-CertEnroll
Date: 22/1/2019 2:36:58 PM
Event ID: 13
Task Category: None
Level: Error
Keywords: Classic
User: SYSTEM
Computer: Server-A.office.org
Description:
Certificate enrollment for Local system failed to enroll for a DomainController certificate with request ID N/A from server-a.office.org\test (The RPC server is unavailable. 0x800706ba (WIN32: 1722 RPC_S_SERVER_UNAVAILABLE)).
Source: Microsoft-Windows-CertificateServicesClient-CertEnroll
Date: 22/1/2019 2:36:58 PM
Event ID: 13
Task Category: None
Level: Error
Keywords: Classic
User: SYSTEM
Computer: Server-A.office.org
Description:
Certificate enrollment for Local system failed to enroll for a DomainController certificate with request ID N/A from server-a.office.org\test (The RPC server is unavailable. 0x800706ba (WIN32: 1722 RPC_S_SERVER_UNAVAILABLE)).
Log Name: Application
Source: Microsoft-Windows-CertificateServicesClient-CertEnroll
Date: 22/1/2019 2:36:58 PM
Event ID: 82
Task Category: None
Level: Error
Keywords: Classic
User: SYSTEM
Computer: Server-A.office.org
Description:
Certificate enrollment for Local system failed in authentication to all urls for enrollment server associated with policy id: {B20A1610-F46B-4C9E-8FE0-11558D4275D6} (The RPC server is unavailable. 0x800706ba (WIN32: 1722 RPC_S_SERVER_UNAVAILABLE)). Failed to enroll for template: DomainController
Source: Microsoft-Windows-CertificateServicesClient-CertEnroll
Date: 22/1/2019 2:36:58 PM
Event ID: 82
Task Category: None
Level: Error
Keywords: Classic
User: SYSTEM
Computer: Server-A.office.org
Description:
Certificate enrollment for Local system failed in authentication to all urls for enrollment server associated with policy id: {B20A1610-F46B-4C9E-8FE0-11558D4275D6} (The RPC server is unavailable. 0x800706ba (WIN32: 1722 RPC_S_SERVER_UNAVAILABLE)). Failed to enroll for template: DomainController
Update