it seems that problem comes from the value of [usercertificate] attribute in the computer object of the server Windows 2012 R2. You should check it and regenerate new one if possible. the following link can help you to generate new value on usercertificate attribute:
Please don't forget to mark helpful answer as accepted*