SCOM Gateway Authentication Issue
Hi,
While trying to test the gateway functionslity in our scom environment, we created certificate in our lab environment and deployed on scom management server and gateway server. Followed the configuration steps as per the below link.
http://technet.microsoft.com/en-us/library/dd362553.aspx
we struct with the below error:
Log Name: Operations Manager
Source: OpsMgr Connector
Date: 26-07-2012 18:20:11
Event ID: 20077
Task Category: None
Level: Error
Keywords: Classic
User: N/A
Computer: XXXX.test.com
Description:
The certificate specified in the registry at HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Microsoft Operations Manager\3.0\Machine Settings cannot be used for authentication, because the certificate cannot be queried for property information. The specific error
is 0x80092004(%3).
This typically means that no private key was included with the certificate. Please double-check to ensure the certificate contains a private key.
July 26th, 2012 8:55am
Hi Kulaks,
When you use a stand-alone you need to do the request form the server where you need the certificate.
When you do an advanced certificate request you have the option "Mark the Key as exportable". Did you check this box in the certificate request?
You can check this when you export the certificate from the current user. If you do not have the option "Yes, export the private key" the request is not correct.
When you have a enterprise CA you probably created a template and forgot to check the "Yes, export the private key".
Hope this helps,
Marthijn.
Free Windows Admin Tool Kit Click here and download it now
July 26th, 2012 10:02am
Hi Kulaks,
When you use a stand-alone you need to do the request form the server where you need the certificate.
When you do an advanced certificate request you have the option "Mark the Key as exportable". Did you check this box in the certificate request?
You can check this when you export the certificate from the current user. If you do not have the option "Yes, export the private key" the request is not correct.
When you have a enterprise CA you probably created a template and forgot to check the "Yes, export the private key".
Hope this helps,
Marthijn.
July 26th, 2012 10:02am
Pls refer to the following post
http://blogs.technet.com/b/kevinholman/archive/2011/02/06/rare-gateway-certificate-issue-event-20077-the-certificate-cannot-be-queried-for-property-information.aspx
Roger
Free Windows Admin Tool Kit Click here and download it now
July 26th, 2012 11:29am
Pls refer to the following post
http://blogs.technet.com/b/kevinholman/archive/2011/02/06/rare-gateway-certificate-issue-event-20077-the-certificate-cannot-be-queried-for-property-information.aspx
Roger
July 26th, 2012 11:29am