The network device enrollment service cannot retrieve one of its required certificates. Aug 24, 2023 · One or both RA certificates were NOT issued by the Certification Authority for which NDES is configured to forward Certificate Service Requests (CSR). Apr 13, 2023 · More data is available. Event ID 2 - The Network Device Enrollment Service cannot be started (0x80004005). May 13, 2024 · (Refer snap above. I recently supported an issue with my colleague Chris Sellar surrounding the Network Device Enrolment Service (NDES) service failing to start after installing the NDES role on a new server to support SCEP certificates in Intune. I've been t-shooting this issue for a week, and have tried everything I can find on Google to resolve this issue. 2: The Network Device Enrollment Service cannot retrieve one of its required certificates (0x80070057) I have checked the Microsoft documentation and applied the following fix to rectify the issue: I have checked that my NDES service account is added to the local IIS group. It Although I could access my CRLs NDES was saying it couldn't check on them when I looked at the logs that are created under the NDES service user. . Unspecified error Apr 30, 2021 · The parameter is incorrect Event ID 10: The Network Device Enrollment Service cannot retrieve one of its required certificates (0x80070057). NDES Role is needed to enroll the certificates to the devices. My account is also added to the service account. The RA certificates are failing revocation checks. Feb 11, 2025 · Troubleshooting the operation of the Network Device Enrollment Service (NDES) policy module when the module processes a certificate request when you use SCEP certificate profiles to deploy certificates with Microsoft Intune. Sep 6, 2018 · This blog is about the installation and configuration of the NDES role and the Intune NDES connector. ) Event Source: Windows Logs > Application > NetworkDeviceEnrollmentService Event ID 10 - The Network Device Enrollment Service cannot retrieve one of its required certificates (0x80070057). Oct 6, 2015 · There are a lot of great guides out there for deploying NDES - Network Device Enrollment Service, but almost all of them were missing some troubleshooting, and I've seen a lot of questions from the community that were not able to get everything working. The Network Device Enrollment Service (NDES) provides a way for devices that do not have an identifier in Active Directory (for example, network devices such as routers, switches, printers, thin clients, or smartphones and tablets) to request certificates from a certification authority. The connector is needed to connect with Microsoft Intune as a Certification Authority. The Network Device Enrollment Service cannot retrieve one of its required certificates (0x80070057). The parameter is… The Network Device Enrollment Service (NDES) provides a way for devices that do not have an identifier in Active Directory (for example, network devices such as routers, switches, printers, thin clients, or smartphones and tablets) to request certificates from a certification authority. The parameter is incorrect. Feb 11, 2025 · Use the following information to determine if a device that received and processed an Intune Simple Certificate Enrollment Protocol (SCEP) certificate profile can successfully contact Network Device Enrollment Service (NDES) to present a challenge. Here are the links to the previous parts: Configure Microsoft Intune – Certificate –… Oct 29, 2021 · I have reviewed all the permissions for the scep accounts (installation, service and user) but I still have something missing. The certutil -URL tool said the CRLS was ok as well but I noticed on my DC CA that it couldn't and that was because we are a school and use a web proxy. Jun 11, 2020 · People were giving all kinds of suggesting on what it was and how to fix it, expired Registration Authority (RA) certificates and Certificate Revocation List (CRL) issues were most common. kjj xepjk rtvwgxv jqq lnaxa arfwq amdy ggrbmkw pxypui bszdl