You receive an error message that contains the event ID 11 error code when you try to update your Windows Vista-based computer by using Windows Update or Microsoft Update
Date: date time
Event ID: 11
Task Category: None
Description:Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
Cause 1This issue may be caused by conflicts with antivirus and other security programs. This error message may occur every time that the computer is started. To work around this issue, see Method 1 in the "Workaround" section.
Cause 2This issue may be caused if your currently logged on user account does not have sufficient permissions to write to the temporary (Temp) folder. To work around this issue, see Method 2 in the "Workaround" section.
Method 1To work around this issue, you must identify the program or service that is causing the error message. You must enable CAPI2 Operational Logging, and then restart the computer to gather the necessary event logs. To do this, follow these steps:
- Click Start, type Event Viewer in the Start Search box, and then click Event Viewer under Programs.
If you are prompted for an administrator password or for confirmation, type the password or provide confirmation.
- Expand Applications and Services Logs.
- Expand Microsoft.
- Expand Windows.
- Expand CAPI2, and then click Operational. The CAPI2 Operational log opens.
- In the Actions task pane, click Enable Log.
- Restart your computer.
- Open the CAPI2 Operational log. To do this, repeat steps 1 through 5.
- Under Operational, search the events list for an event ID of 11 that has a level of Error. Click each instance that you find, and then review the description of the event to see which program is causing the error message.
- Zone Alarm
- Other antivirus and security products
- An antivirus program is designed to help protect your computer from viruses. You must not download or open files from sources that you do not trust, visit Web sites that you do not trust, or open e-mail attachments when your antivirus program is disabled. For more information about computer viruses, click the following article number to view the article in the Microsoft Knowledge Base:129972 Computer viruses: description, prevention, and recovery
- A firewall is designed to help protect your computer from attack by malicious users or by malicious software, such as viruses that use unsolicited incoming network traffic to attack your computer. Before you disable your firewall, you must disconnect your computer from all networks including the Internet.
To determine whether one of these programs or another program that is mentioned in the event log error description is causing this issue, you can test the program by temporarily disabling or temporarily uninstalling the program and then restarting your computer. Then, search the CAPI2 Operational log for an instance of event ID 11 that has a level of Error to see whether the error message still occurs.
Important If you intend to uninstall the program, you should make sure that you have access to the installation media and any product ID that is needed to reinstall the program after your testing is completed.
If temporarily disabling or temporarily uninstalling the program resolves the issue, you should contact the programs manufacturer for an update, a hotfix, or other help.
Method 2The Automatic Root Certificates Update downloads a CAB file to the Temp folder on the local computer, extracts the contents of the file, and then updates the root certificate list. The appropriate permissions must be applied to the Temp folder for the CAB file to be installed correctly.
To check the permissions on the Temp folder, follow these steps:
- Click Start, type %userprofile%\AppData\Local in the Start Search box, and then click Local in the list.
- Right-click the Temp folder in the Folders list, and then click Properties.
- Click the Security tab.
- Click your user account in the Group or user names list that you used to log on to the computer, and make sure that your user account has Full Control permissions.
- Click Edit.
- Select the user account that you used to log on to the computer in the Group or user names list, and then click to select the Full control check box under Allow.
- Click Apply, and then click OK two times.
Article ID: 976235 - Last Review: 09/27/2011 22:23:00 - Revision: 2.0
- kbtshoot kberrmsg kbexpertisebeginner kbsurveynew kbprb KB976235