Tech Poison: How to enable diagnostic debug logging of Certificate Services

Wednesday, December 3, 2008

How to enable diagnostic debug logging of Certificate Services

You can enable diagnostic debug logging of Certificate Services on Windows Server 2003-based servers by modifying the registry on the computer on which the logging is to occur.

KB article: 299621

Value Path: HKLM\SYSTEM\CurrentControlSet\Services\Certsvc\Configuration\
Value Name: debug
Value Type: REG_DWORD
Value Data: FFFFFFFF (hex)
Output: %systemroot%\certsrv.log
Note: To turn logging off, delete the preceding debug registry value.
The affected log files are: -
- %Systemroot%\certsrv.log (Certsrv.exe) Certificate Services
- %SystemRoot%\certutil.log (Certutil.exe)
- %SystemRoot%\certreq.log (Certreq.exe)
- %SystemRoot%\certmmc.log (Certmmc.dll) Certificate Services MMC snap-in
- %SystemRoot%\certocm.log (Certocm.dll) Certificate Services Setup

Tech Poison

Wednesday, December 3, 2008

How to enable diagnostic debug logging of Certificate Services

Search This Blog

Active Directory

Microsoft Exchange

Microsoft Operating Systems

Archives

Recent Posts

Understanding Networks

My Favourite Blogs

Cloud

Disclaimer

Tech Poison

Wednesday, December 3, 2008

How to enable diagnostic debug logging of Certificate Services

Search This Blog

Active Directory

Microsoft Exchange

Microsoft Operating Systems

Archives

Recent Posts

Understanding Networks

Subscribe To

My Favourite Blogs

Cloud

Disclaimer