When setting up a certificate authority ...
Report Back to Forum Back to All Forums
Make sure you have your CDP paths set up correctly.
For example, if you want to publish to:
http://MyPublishingPoint/CertEnroll/MyCRL.crl
Don't configure the root with:
http://MyPublishingPoint/CertEntroll/MyCRL.crl
Chased this error for entirely too long. It'd be really cool if the errors the Network Policy Server gave were a little more descriptive than:
The certification authority that manages the certificate revocation list is not available. NPS cannot verify whether the certificate is valid or is revoked. Because of this, authentication failed.