Some time we have a client that refuses to finish the install of the SCCM client because the certificate doesn't have a private key or it throw the error in isntallation log.
We can try below 2 different solutions .
1. The easiest is to check the cert store under personnal and see if there are any invalid certs. Delete and restart.
2. The other is a more dangerous solution but will correct the problem
It is only recommend when you see all of the following problems:
CCM Setup Log:
Automatic certificate enrollment for local system failed to enroll for one Computer
certificate (0x80090016). Keyset does not exist
Client sucessfully installed but still u see below error in logs &Applicationn Event Log:
ClientIDManagerStartup:
Certificate issued to 'computer.domain.com' doesn't have private key.
RegTask: Failed to get certificate. Error: 0x80040280
RegTask: Failed to get certificate. Error: 0x80040281
Error initializing client registration (0x80040222).
Solution:
Stop the Crypto Service
Rename the folders under the Crypto Folder
C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto
Restart the machine and watch the ClientIDManagerStartup log
We can try below 2 different solutions .
1. The easiest is to check the cert store under personnal and see if there are any invalid certs. Delete and restart.
2. The other is a more dangerous solution but will correct the problem
It is only recommend when you see all of the following problems:
CCM Setup Log:
Automatic certificate enrollment for local system failed to enroll for one Computer
certificate (0x80090016). Keyset does not exist
Client sucessfully installed but still u see below error in logs &Applicationn Event Log:
ClientIDManagerStartup:
Certificate issued to 'computer.domain.com' doesn't have private key.
RegTask: Failed to get certificate. Error: 0x80040280
RegTask: Failed to get certificate. Error: 0x80040281
Error initializing client registration (0x80040222).
Solution:
Stop the Crypto Service
Rename the folders under the Crypto Folder
C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto
Restart the machine and watch the ClientIDManagerStartup log
Hope this will help you :)
Amarpal Singh Sandhu
No comments:
Post a Comment