Select the product you need help with
- Internet Explorer
- Windows Phone
- More products
The certification authority startup event in the Security log always reports a usage count of zero for the signing key on a computer that is running Windows Server 2008 or Windows Server 2003
Article ID: 951721 - View products that this article applies to.
Consider the following scenario:
For example, the startup events that are logged display the key count as follows.
Windows Server 2008
Event id: 4881
Event id: 784
This issue occurs because the certification authority service does not enable key counting on a key that is created after the CA is set up.
To resolve this issue, create the key before you set up the certification authority. To do this on a computer that is running either Windows Server 2008 or Windows Server 2003, follow these steps:
Windows Server 2003 onlyOn a computer that is running Windows Server 2003, you can also renew the CA certificate by using the new key after setup is complete. To do this, follow these steps:
For more information about how to use a Capolicy.inf file, visit the following Microsoft TechNet Web site:
Article ID: 951721 - Last Review: April 28, 2008 - Revision: 1.0