JSI Tip 5708. You receive Event ID 36872 on a domain controller?

Your Window 2000 domain controller logs the following event in the System Event log:

Event Type: Warning
Event Source: Schannel
Event Category: None
Event ID: 36872
Date: Date
Time: Time
User: N/A
Computer: <Computer Name> Description: No suitable default server credential exists on this system. This will prevent server applications that expect to make use of the system default credentials from accepting SSL connections. An example of such an application is the directory server. Applications that manage their own credentials, such as the internet information server, are not affected by this.

When a server application, such as Active Directory, tries to perform a SSL (Secure Sockets Layer) connection, but no server certificate is found, the above event is logged.

Server certificates can be manually enrolled or generated by the domain's enterprise Certificate Authority (CA).

If you did NOT enroll a certificate, and your domain does NOT contain an enterprise CA, you can safely ignore this event.

Hide comments


  • Allowed HTML tags: <em> <strong> <blockquote> <br> <p>

Plain text

  • No HTML tags allowed.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Lines and paragraphs break automatically.