KDC Certificate Availability

Applies To: Windows Server 2008 R2

The Kerberos ticket exchange is encrypted from the Kerberos client to the Kerberos Key Distribution Center (KDC) by using a domain controller certificate, also known as the KDC certificate.

Events

Event ID Source Message

9

Microsoft-Windows-Security-Kerberos

The client has failed to validate the Domain Controller certificate for %2. The following error was returned from the certificate validation process: %1.

Kerberos Client

Core Security