Event ID 23 — Certificate Acquistion and Deletion

Applies To: Windows Server 2008

If a NAP client computer is not able to contact the HRA server, or if server components are not correctly configured on HRA servers, certification authority (CA) servers, or Network Policy Server (NPS), the client computer will not be able to obtain a health certificate. IPsec policies typically restrict network communication of computers that do not have a valid health certificate.

A compliant NAP client computer might not be able to obtain a health certificate from an HRA server for the following reasons:

  • An error in trusted server group configuration of the NAP client
  • Network connectivity problems on the HRA server, the CA server, or the NAP client
  • A configuration problem on the HRA server
  • A configuration problem on the CA server associated with the HRA

Event Details

Product: Windows Operating System
ID: 23
Source: Microsoft-Windows-NetworkAccessProtection
Version: 6.0
Message: The Network Access Protection Agent successfully deleted the certificate with the thumbprint of %1.
The certificate has expired or the health state of the client has changed or a replacement certificate has been acquired.
See the administrator for more information.


This is a normal condition. No further action is required.

Certificate Acquistion and Deletion

NAP Infrastructure