I am admittedly not very strong with Active Directory Certificate Services. I have 4 domain controllers and only having certificate enrollment issues with one of them. The other 3 enroll just fine. I have certificate services installed on a Server 2008 R2 Domain Controller. The forest and domain are at 2008 R2 functionality levels.The domain controller having trouble also holds the RID, PDC, and IM.I have verified the proper groups in Certificate Service DCOM Access. I get event ID 6 and 13 every day at 6:10 AM and 2:10 PM on the problematic DC. Automatic certificate enrollment for local system failed (0x800706ba) The RPC server is unavailable. I also see event 1400 in the AD Web Services Log Active Directory Web Services could not find a server certificate with the specified certificate name. A certificate is required to use SSL/TLS connections. To use SSL/TLS connections, verify that a valid server authentication certificate from a trusted Certificate Authority (CA) is installed on the machine. Certificate name: problemDC.domain.local I am in need of help on this. Thank you in advance. Rob

I have verified that the template has the correct security permissions. DNS works fine the service is started and everything is reachable on the network. I can see that my CA has issued "DomainController" certificates to the 3 other DC's but not the one. I have tested and verified the certutil ping command to verify that service is listening properly on my CA. There are no firewalls in between this DC and the CA to block traffic. The problem server is a very plain build. So i have to ask the following questions: Why would I be having trouble with just this one DC? It is Server 2008 R2 like all the others. Only difference is that it holds some FSMO roles.Is it correct that the other DC's were issued the Domain Controller Cert and not the Domain Controller Authentication?Should I try to manually request a certificate? If so should i use the Domain Controller or Domain Controller Authentication template?Rob