2008 RC1 DC: DomainControllerAuthentication Certificate Request error
Certificate enrollment for Local system failed to enroll for a DomainController certificate from (The RPC server is unavailable. 0x800706ba (WIN32: 1722)).
We have seen this for Vista/server 2008 trying to register for V2 templates agains 2003 CAs and suspect the same issue would be present in Windows Server 2008. The following steps should resolve this:
1. Please check to ensure that a new security group, CERTSVC_DCOM_ACCESS, has been created after Windows Server 2003 SP1 or later has been applied.
2. Please add the “Domain Users”, “Domain Computers”, “Domain Controllers” groups to the new CERTSVC_DCOM_ACCESS security group.
3. Then we can have Certificate Services update the DCOM security settings by running the following commands:
certutil -setreg SetupStatus -SETUP_DCOM_SECURITY_UPDATED_FLAG
net stop certsvc
net start certsvc.