Event ID 20168 — RRAS Computer Certificate for EAP-TLS

Applies To: Windows Server 2008

When you use EAP with a strong EAP type, such as Transport Layer Security (TLS) with smart cards or certificates, both the client and the server use certificates to verify their identities to each other. For successful authentication, certificates must meet requirements both on the server and on the client.

For information about computer certificates for EAP-TLS, see "EAP Overview" and "Certificate Requirements for PEAP and EAP" in Windows Server 2008 NPS Help.

Event Details

Product: Windows Operating System
ID: 20168
Source: RemoteAccess
Version: 6.0
Message: Could not retrieve the remote access server's certificate due to the following error: %1


Confirm the server certificate is installed

To confirm that the server certificate is installed:

  1. Click Start, and then click Run.
  2. In Open, type mmc, and then click OK.
  3. In the snap-in, click File, and then click Add/Remove Snap-in.
  4. Under Available snap-ins, click Certificates, and then click Add.
  5. Click Computer account, and then click Next.
  6. In the Select Computer dialog box, click Finish to accept the default setting of local computer.
  7. Click OK to close the Add or Remove Snap-ins dialog box.
  8. In the console tree pane, double-click Certificates - Current User, double-click Personal, and then click Certificates.
  9. Confirm that the server certificate is installed.


To verify that the remote access server can accept connections, establish a remote access connection from a client computer.

To create a VPN connection:

  1. Click Start, and then click Control Panel.
  2. Click Network and Internet, click Network and Sharing Center, and then click Set up a connection or network.
  3. Click Connect to a workplace, and then click Next.
  4. Complete the steps in the Connect to a Workplace wizard.

To connect to a remote access server:

  1. In Network and Sharing Center, click Manage network connections.
  2. Double-click the VPN connection, and then click Connect.
  3. Verify that the connection was established successfully.

RRAS Computer Certificate for EAP-TLS

Routing and Remote Access Service Infrastructure