Jump to content

Starting server service using Active Directory domain user


Recommended Posts

I can run the server just fine using an administrative account on the local machine. When I try to use an account from the Active Directory domain though I get an error in the Application log:


Service cannot be started. System.ArgumentException: The certificate 'CN=localhost, OU=Debug, O=daminion.net, S=Russia, C=RU' must have a private key that is capable of key exchange. The process must have access rights for the private key. ---> System.Security.Cryptography.CryptographicException: Keyset does not exist at System.Security.Cryptography.Utils.CreateProvHandle(CspParameters parameters, Boolean randomKeyContainer)


Is there a way to allow this to get its certificate from our interla local domain instead of using the one from daminion.net?


Or am I mis-reading the error and we need some other fix?


This is server




Bobb Menk

MIT Lincoln Laboratory Library

Link to comment
Share on other sites

I was able to get this working. Here's what I missed that was causing the issue:


After changing the logon user in the Services control panel I then checked the server application itself. That showed the message that I needed to grant the new users rights to the certificate that allows that user to run the server app. There was a helpful link in the server app window to do this for me. Once I clicked it, the server started up again with no issues.


Bobb Menk

Link to comment
Share on other sites

  • 3 years later...

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

  • Create New...