OS: Windows 7 Enterprise
Issue: I get the below error on 2 workstations when trying to login via smartcard.
Error: (event id 9 source security-kerberos) The client has failed to validate the Domain Controller certificate for snouembad8.tcsc.ussouthcom.mil. The following error was returned from the certificate validation process: The revocation function was unable to check revocation because the revocation server was offline.
I followed the instructions in: http://technet.microsoft.com/en-us/library/dd363885(v=ws.10).aspx
To request a new certificate:
- Expand Certificates (Local computer),right-click Personal, and then clickRequest New Certificate.
- Complete the appropriate information in the Certificate Enrollment Wizard for a domain controller certificate.
- Close the Certificates snap-in.
and I get this additional error:
Logon Failure: The user has not been granted this type of logon request