Locksmith icon indicating copy to clipboard operation
Locksmith copied to clipboard
verified publisher icon TrimarcJake

If CA is unavailable, Auditing/ESC6/ESC11 Reporting is Unclear

Open jakehildreth opened this issue 11 months ago • 8 comments

Describe the Bug If Locksmith cannot get data from certutil.exe (either from network issues or limited privileges), Locksmith reports Auditing/ESC6/ESC11 Issue as "CA Unavailable" and Fix as "N/A". This is not helpful.

Steps To Reproduce

  1. Lock down the use of certutil by low-privileged users.
  2. run Locksmith.

Expected Behavior If CA is unavailable, Locksmith should return the reason why it's unavailable.

Environment

  • Locksmith Version: 2025.1.14 (unreleased)
  • OS: Windows Server 2019
  • PowerShell Version: Windows PowerShell 5.1
  • PowerShell Host: VS Code Terminal

Additional Context Submitted on behalf of @PSmithing

jakehildreth avatar Jan 25 '25 12:01 jakehildreth