MS CS with Yubihsm2 - The device that is required by this cryptographic provider is not ready for use. 0x880090030 (-2146893776 NTE_DEVICE_NOT_READY)

D

D0611

Hi Colleagues,I am in charge of a Microsoft CA with an offline Root and several online SubCAs. The SubCas use a YubiHSM2 to store their keys. The HSMs are directly slotted into the Servers, so there is no network in between. In general, the CA works as expected and the issuing of certificates works just fine.However, I now have a problem that I cant seem to figure out. Whenever my colleagues try to provision several clients with autoenroll certificates my "Failed Requests" fills with a bunch of different error messages (see attached picture). After a while (up to several hours) the certificate

Continue reading...
 
You must log in or register to reply here.

Similar threads

D
OpenSSL Certificates used for NPS EAP - Reason Code 295 (CA certificates is not trusted by the policy provider)
Replies
0
Views
42
Dave Baddorf
D
C
My computer is asking me for a bit locker, but all the accounts that I use in the pass are not connected to the computer. Help me to solve this I got
Replies
0
Views
46
CARLOS G RIVERA MARTINEZ
C
B
The Network Device Enrollment Service cannot submit the certificate request (0x80070005). Access is denied.
Replies
0
Views
2K
B - a technology trainer
B
Server Man
Secure Credentials with Self-Signed Certificates for PowerShell Scripts
Replies
0
Views
605
Server Man
Server Man
D
Reverse Engineering (?) Self-Signed Certificates--And Exploring Custom Templates
Replies
0
Views
424
Dapperville Inn
D
Back
Top Bottom