SCCM 2012 R2 Log File for Certificate Enrollment issue

SCCM 2012 R2 Log File for Certificate Enrollment issue

Certificate Enrollment

The following table lists the Configuration Manager log files that contain information related to certificate enrollment, which uses the certificate registration point and the Configuration Manager Policy Module on the server running Network Device Enrollment Service.

Log name	Description	Computer with log file
Crp.log	Records the enrollment activities.	Certificate registration point
Crpctrl.log	Records the operational health of the certificate registration point.	Certificate registration point
Crpsetup.log	Records details about the installation and configuration of the certificate registration point.	Certificate registration point
Crpmsi.log	Records details about the installation and configuration of the certificate registration point.	Certificate registration point
NDESPlugin.log	Records the challenge verification and certificate enrollment activities.	Configuration Manager Policy Module and the Network Device Enrollment Service

In addition to the Configuration Manager log files, review the Windows Application logs in Event Viewer on the server running the Network Device Enrollment Service and the server hosting the certificate registration point. For example, look for messages from theNetworkDeviceEnrollmentService source. You can also use the following log files:

• IIS log files for Network Device Enrollment Service: <path>\inetpub\logs\LogFiles\W3SVC1 
• IIS log files for the certificate registration point: <path>\inetpub\logs\LogFiles\W3SVC1
• Network Device Enrollment Policy log file: mscep.log

  Note
  This file is located in the folder for the Network Device Enrollment Service account profile, for example, in C:\Users\SCEPSvc. For more information about how to enable logging for the Network Device Enrollment Service, see the Enable Logging section in the Network Device Enrollment Service (NDES) in Active Directory Certificate Services (AD CS) article on the TechNet wiki.