Error: The revocation function was unable to check revocation because the revocation server was offline. 0x80092013 (-2146885613)


Sathish Nadarajan
SharePoint MVP
Published On :   28 Oct 2014
Visit Count
Today :  13    Total :   22021
Plan, Migrate, Secure, Report
SharePoint & Office 365 Tool. Simple & Easy to Use. 15-Day Trial!

SharePoint Office 365 Tool
Simple & Powerful Tool for Migration, Security & Reporting. Free Trial


I was on the process of installing and configuring my Own Certificate Authority by installing the Active Directory Certificate Services. The installations were completed successfully. I tried to create a Certificate from the IIS I was facing an Exception like “Error: The revocation function was unable to check revocation because the revocation server was offline. 0x80092013 (-2146885613)”

On the Server Manager, we can see the exception as below.

clip_image002

I was not able to Create a certificate as well as the Renewal also not be done.

Then after googling for a while, found a useful tip regarding this. Thought of sharing this to the SharePoint Community.

Executing a simple command solves this problem.

· Open the Command Prompt as Administrator on the CA Server.

· Execute the following command.

 certutil –setreg ca\CRLFlags +CRLF_REVCHECK_IGNORE_OFFLINE

· Restart the Server.

· Try creating/Renewal the certificate.

· It should create/Renew without any issue.

Then, if you want to roll back to the previous setting,

 certutil –setreg ca\CRLFlags -CRLF_REVCHECK_IGNORE_OFFLINE.

The execution of the above command will gives the following output.

 Old Value:
 CRLFlags REG_DWORD = 2
 CRLF_DELETE_EXPIRED_CRLS -- 2
 New Value:
 CRLFlags REG_DWORD = a (10)
 CRLF_DELETE_EXPIRED_CRLS -- 2
 CRLF_REVCHECK_IGNORE_OFFLINE -- 8
 CertUtil: -setreg command completed successfully.
 

Happy Coding.

Sathish Nadarajan.

SharePoint Usage Reports
Usage reports, collaboration and audit for SharePoint.
Categories

KWizCom Forms App