Good Day Community,
I have setup a testlab with sccm 2k7 r2 in native mode, everything works fine but i cannot get the certificate enrollment for mobile devices working.
The device client DMCertEnroll logfile shows the following:
<![LOG[Cert enroller started...]LOG]!><time="07:21:32.000+480" date="04-16-2009" component="Default" context="" type="1" thread="1987810414" file="enroll.cpp:258">
<![LOG[Config file: \temp\DmInstall\enroll.ini]LOG]!><time="07:21:32.000+480" date="04-16-2009" component="Default" context="" type="1" thread="1987810414" file="enroll.cpp:216">
<![LOG[Property 'CERT_ATTRIBS' not found in INI file.]LOG]!><time="07:21:32.000+480" date="04-16-2009" component="Default" context="" type="2" thread="1987810414" file="dmcliutil.cpp:435">
<![LOG[Property 'CERT_CHAIN' not found in INI file.]LOG]!><time="07:21:32.000+480" date="04-16-2009" component="Default" context="" type="2" thread="1987810414" file="dmcliutil.cpp:435">
<![LOG[Property 'CERT_STORE' not found in INI file.]LOG]!><time="07:21:32.000+480" date="04-16-2009" component="Default" context="" type="2" thread="1987810414" file="dmcliutil.cpp:435">
<![LOG[Property 'CERT_TEMPLATE' not found in INI file.]LOG]!><time="07:21:32.000+480" date="04-16-2009" component="Default" context="" type="2" thread="1987810414" file="dmcliutil.cpp:435">
<![LOG[Property 'DW_FLAGS' not found in INI file.]LOG]!><time="07:21:32.000+480" date="04-16-2009" component="Default" context="" type="2" thread="1987810414" file="dmcliutil.cpp:435">
<![LOG[Property 'DW_KEY_SPEC' not found in INI file.]LOG]!><time="07:21:32.000+480" date="04-16-2009" component="Default" context="" type="2" thread="1987810414" file="dmcliutil.cpp:435">
<![LOG[Property 'DW_PROV_TYPE' not found in INI file.]LOG]!><time="07:21:32.000+480" date="04-16-2009" component="Default" context="" type="2" thread="1987810414" file="dmcliutil.cpp:435">
<![LOG[Property 'KEY_CONTAINER_NAME' not found in INI file.]LOG]!><time="07:21:32.000+480" date="04-16-2009" component="Default" context="" type="2" thread="1987810414" file="dmcliutil.cpp:435">
<![LOG[Property 'KEY_PROVIDER_NAME' not found in INI file.]LOG]!><time="07:21:32.000+480" date="04-16-2009" component="Default" context="" type="2" thread="1987810414" file="dmcliutil.cpp:435">
<![LOG[Property 'PASSWORD' not found in INI file.]LOG]!><time="07:21:32.000+480" date="04-16-2009" component="Default" context="" type="2" thread="1987810414" file="dmcliutil.cpp:435">
<![LOG[Property 'USERNAME' not found in INI file.]LOG]!><time="07:21:32.000+480" date="04-16-2009" component="Default" context="" type="2" thread="1987810414" file="dmcliutil.cpp:435">
<![LOG[Failed to parse cert number, it might be LH CA, try again!]LOG]!><time="07:22:51.000+480" date="04-16-2009" component="Default" context="" type="1" thread="1987810414" file="crypt_web.cpp:73">
<![LOG[Failed to find keyword in cert response.]LOG]!><time="07:22:51.000+480" date="04-16-2009" component="Default" context="" type="3" thread="1987810414" file="crypt_web.cpp:77">
<![LOG[Error encountered. Error code 0x80004005.]LOG]!><time="07:22:51.000+480" date="04-16-2009" component="Default" context="" type="2" thread="1987810414" file="crypt_web.cpp:965">
<![LOG[Error encountered. Error code 0x80004005.]LOG]!><time="07:22:51.000+480" date="04-16-2009" component="Default" context="" type="2" thread="1987810414" file="enroll.cpp:89">
<![LOG[Error encountered. Error code 0x80004005.]LOG]!><time="07:22:51.000+480" date="04-16-2009" component="Default" context="" type="2" thread="1987810414" file="enroll.cpp:269">
The CA is W2K8 and in the CA console I can see that a certificate is enrolled for the requesting client.
I do not exactly understand the errors in the log, maybe someone can help me with this ?
Thanks
Andy
Mobile Device Management - Device Client Installation - Certificate Enrollment
April 16th, 2009 5:26am
I followed thetechnet praticesbefore postingand re-verified without getting further success. I didnt find a hint at technetthat my setup shouldnt work. In fact it does for the non windows mobile devices :-)
Anyway,I now have added a w2k3 subordinate ca to my w2k8 ca and pointing the sccm mobile device client to that ca for device client certificate enrollment and it seems to work fine :-)
Cheers
Andy
Anyway,I now have added a w2k3 subordinate ca to my w2k8 ca and pointing the sccm mobile device client to that ca for device client certificate enrollment and it seems to work fine :-)
Cheers
Andy
- Marked as answer by AndyDO815 Monday, April 20, 2009 5:27 PM
Free Windows Admin Tool Kit Click here and download it now
April 20th, 2009 5:27pm
I followed thetechnet praticesbefore postingand re-verified without getting further success. I didnt find a hint at technetthat my setup shouldnt work. In fact it does for the non windows mobile devices :-)
Anyway,I now have added a w2k3 subordinate ca to my w2k8 ca and pointing the sccm mobile device client to that ca for device client certificate enrollment and it seems to work fine :-)
Cheers
Andy
Anyway,I now have added a w2k3 subordinate ca to my w2k8 ca and pointing the sccm mobile device client to that ca for device client certificate enrollment and it seems to work fine :-)
Cheers
Andy
- Marked as answer by AndyDO815 Monday, April 20, 2009 5:27 PM
April 20th, 2009 5:27pm
I followed thetechnet praticesbefore postingand re-verified without getting further success. I didnt find a hint at technetthat my setup shouldnt work. In fact it does for the non windows mobile devices :-)
Anyway,I now have added a w2k3 subordinate ca to my w2k8 ca and pointing the sccm mobile device client to that ca for device client certificate enrollment and it seems to work fine :-)
Cheers
Andy
Anyway,I now have added a w2k3 subordinate ca to my w2k8 ca and pointing the sccm mobile device client to that ca for device client certificate enrollment and it seems to work fine :-)
Cheers
Andy
- Marked as answer by AndyDO815 Monday, April 20, 2009 5:27 PM
Free Windows Admin Tool Kit Click here and download it now
April 20th, 2009 5:27pm
I followed thetechnet praticesbefore postingand re-verified without getting further success. I didnt find a hint at technetthat my setup shouldnt work. In fact it does for the non windows mobile devices :-)
Anyway,I now have added a w2k3 subordinate ca to my w2k8 ca and pointing the sccm mobile device client to that ca for device client certificate enrollment and it seems to work fine :-)
Cheers
Andy
Anyway,I now have added a w2k3 subordinate ca to my w2k8 ca and pointing the sccm mobile device client to that ca for device client certificate enrollment and it seems to work fine :-)
Cheers
Andy
- Marked as answer by AndyDO815 Monday, April 20, 2009 5:27 PM
April 20th, 2009 5:27pm
I followed thetechnet praticesbefore postingand re-verified without getting further success. I didnt find a hint at technetthat my setup shouldnt work. In fact it does for the non windows mobile devices :-)
Anyway,I now have added a w2k3 subordinate ca to my w2k8 ca and pointing the sccm mobile device client to that ca for device client certificate enrollment and it seems to work fine :-)
Cheers
Andy
Anyway,I now have added a w2k3 subordinate ca to my w2k8 ca and pointing the sccm mobile device client to that ca for device client certificate enrollment and it seems to work fine :-)
Cheers
Andy
- Marked as answer by AndyDO815 Monday, April 20, 2009 5:27 PM
Free Windows Admin Tool Kit Click here and download it now
April 20th, 2009 5:27pm
I followed thetechnet praticesbefore postingand re-verified without getting further success. I didnt find a hint at technetthat my setup shouldnt work. In fact it does for the non windows mobile devices :-)
Anyway,I now have added a w2k3 subordinate ca to my w2k8 ca and pointing the sccm mobile device client to that ca for device client certificate enrollment and it seems to work fine :-)
Cheers
Andy
Anyway,I now have added a w2k3 subordinate ca to my w2k8 ca and pointing the sccm mobile device client to that ca for device client certificate enrollment and it seems to work fine :-)
Cheers
Andy
- Marked as answer by AndyDO815 Monday, April 20, 2009 5:27 PM
April 20th, 2009 5:27pm
Hi ,
i have the same issue , can you please tell me how can you added the w2k3 subordinate ca to your w2k8 ca?
Best regards
Moez Bouchriha
Free Windows Admin Tool Kit Click here and download it now
August 5th, 2015 10:24am
This topic is archived. No further replies will be accepted.
Other recent topics
