Security: A CryptoAPI error was encountered trying to retrieve the server certificate - Security__A_CryptoAPI_error_was_encountered_trying_to_retrieve_the_server_certificate_1_9

Security__A_CryptoAPI_error_was_encountered_trying_to_retrieve_the_server_certificate_1_9_Rule.Monitor (UnitMonitor)

Knowledge Base article:

Summary

The Server encountered an error while trying to retrieve the Certificate Trust List

Resolutions

To resolve this issue execute the following steps:

Either the root CA has been taken offline for security reasons or the client's certsrv can't locate the CRL's. By default the Cert srv publishes a new revokation list every 7 days. If your root CA were taken offline and the new CRL wasn't published online to AD, your cert chain will be broken.

Check the respective Items.

Element properties:

Target

Microsoft.Windows.InternetInformationServices.2000.WebServer

Parent Monitor

System.Health.ConfigurationState

Category

StateCollection

Enabled

True

Alert Generate

True

Alert Severity

Warning

Alert Priority

Low

Alert Auto Resolve

True

Monitor Type

Microsoft.Windows.SingleEventLogManualReset2StateMonitorType

Remotable

True

Accessibility

Public

Alert Message

Security A CryptoAPI error was encountered trying to retrieve the server certificate

{0}

RunAs

Default

Comment

Mom2005ID='{6E2DA7F4-E69F-40C0-AFCA-698375FEDE43}'

Source Code:

<UnitMonitor ID="Security__A_CryptoAPI_error_was_encountered_trying_to_retrieve_the_server_certificate_1_9_Rule.Monitor" Comment="Mom2005ID='{6E2DA7F4-E69F-40C0-AFCA-698375FEDE43}'" Accessibility="Public" Enabled="onEssentialMonitoring" Target="Microsoft.Windows.InternetInformationServices.2000.WebServer" ParentMonitorID="SystemHealth!System.Health.ConfigurationState" Remotable="true" Priority="Normal" TypeID="Windows!Microsoft.Windows.SingleEventLogManualReset2StateMonitorType" ConfirmDelivery="false"> <Category>StateCollection</Category> <AlertSettings AlertMessage="Security__A_CryptoAPI_error_was_encountered_trying_to_retrieve_the_server_certificate_1_9_Rule.Monitor.AlertMessage"> <AlertOnState>Warning</AlertOnState> <AutoResolve>true</AutoResolve> <AlertPriority>Low</AlertPriority> <AlertSeverity>Warning</AlertSeverity> <AlertParameters> <AlertParameter1>$Data/Context/EventDescription$</AlertParameter1> </AlertParameters> </AlertSettings> <OperationalStates> <OperationalState ID="ManualReset" MonitorTypeStateID="ManualResetEventRaised" HealthState="Success"/> <OperationalState ID="ConfigError" MonitorTypeStateID="EventRaised" HealthState="Warning"/> </OperationalStates> <Configuration> <ComputerName>$Target/Host/Host/Property[Type="Windows!Microsoft.Windows.Computer"]/NetworkName$</ComputerName> <LogName>System</LogName> <Expression> <And> <Expression> <SimpleExpression> <ValueExpression> <XPathQuery>PublisherName</XPathQuery> </ValueExpression> <Operator>Equal</Operator> <ValueExpression> <Value>W3SVC</Value> </ValueExpression> </SimpleExpression> </Expression> <Expression> <SimpleExpression> <ValueExpression> <XPathQuery>EventDisplayNumber</XPathQuery> </ValueExpression> <Operator>Equal</Operator> <ValueExpression> <Value>51</Value> </ValueExpression> </SimpleExpression> </Expression> </And> </Expression> </Configuration> </UnitMonitor>