How to debug/ what trace/event to collect for the failure under func- CertCreateSelfSignCertificate function/crypt32.dll?

Xiang Tian 0 Reputation points Microsoft Employee
2023-02-08T00:27:18.4733333+00:00

Hello,

From a on prem customer environment, failed to start our service - windows service - running under GMSA with error- TDS initialization failed.

the procmon stack shows it is doing CertCreateSelfSignCertificate before writing the failure out.

Would like to know How to debug or what trace/event to collect for the failure under func- CertCreateSelfSignCertificate function/crypt32.dll in a on prem customer environment?

Windows 10
Windows 10
A Microsoft operating system that runs on personal computers and tablets.
10,616 questions
Windows 11
Windows 11
A Microsoft operating system designed for productivity, creativity, and ease of use.
8,163 questions

4 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. risolis 8,701 Reputation points
    2023-02-08T02:48:56.3666667+00:00

    Hello @zuoxiang tian

    Thank you for posting this concern on this community space.

    I was reading your case scenario issue and I would like to gather the following option as it is shown down below:

    User's image

    Then, you might get something like this on the PS terminal as well.

    User's image

    Let me know if that was useful but if not, I can keep assisting you further.

    Looking forward to your feedback,

    Cheers,

    Please "Accept the answer" if the information helped you. This will help us and others in the community as well.

    0 comments
  2. Xiang Tian 0 Reputation points Microsoft Employee
    2023-02-09T00:27:48.86+00:00

    @risolis sorry that I not quite follow your answer. Since this does not repro in the lab environment. What powershell script I should run in the customer environment?

    0 comments
  3. risolis 8,701 Reputation points
    2023-02-09T03:21:09.2+00:00

    Hello @zuoxiang tian

    Many thanks for your feedback.

    If I am not mistaken for what you are looking for the following note can be relevant in order to get debugging info as stated at the very beginning.

    View the SQL Server error log by using SQL Server Management Studio or any text editor. For more information about how to view the error log, see Open Log File Viewer. By default, the error log is located at Program Files\Microsoft SQL Server\MSSQL.n\MSSQL\LOG\ERRORLOG and ERRORLOG.n files.

    Looking forward to your feedback,

    Cheers,

    Please "Accept the answer" if the information helped you. This will help us and others in the community as well.

    0 comments
  4. risolis 8,701 Reputation points
    2023-02-11T21:43:39.33+00:00

    Hello @zuoxiang tian

    I hope you are doing fine.

    I just wanted to know if the previous post was helpful to overcome this issue.

    Looking forward to your response back.

    Have a good one!

    0 comments