I write this to help all you technical warriors out there who get shitty advice from the Microsoft Forums and other profound idiots about the 0x80092002 error in SCCM - usually to do with PXE booting but can manifest in other ways around DP -> MP communications.
The tricky one about this error is that it happens even if you are only using HTTP communication and not HTTPS/TLS. So to get an error about certificates is somewhat confusing.
What the uneducated masses of the internet will tell you is to re-install the PXE role over an over. This will do nothing.
Then they will tell you to re-install your management point and effectively re-build your entire infrastructure. This will work, but only because it is the nuclear option and will run the step that actually makes a difference as a matter of course.
So, here it is folks. If you have these kinds of errors in your logs:
Remember kids, if you don't understand how Windows actually works, wildly clicking around won't help - nor will posting dumb and incorrect solutions on the Internet.
The tricky one about this error is that it happens even if you are only using HTTP communication and not HTTPS/TLS. So to get an error about certificates is somewhat confusing.
What the uneducated masses of the internet will tell you is to re-install the PXE role over an over. This will do nothing.
Then they will tell you to re-install your management point and effectively re-build your entire infrastructure. This will work, but only because it is the nuclear option and will run the step that actually makes a difference as a matter of course.
So, here it is folks. If you have these kinds of errors in your logs:
PXE::MP_InitializeTransport failed; 0x80092002 SMSPXE 22/03/2017 2:45:58 PM 4144 (0x1030)
PXE::MP_ReportStatus failed; 0x80092002 SMSPXE 22/03/2017 2:45:58 PM 4144 (0x1030)
PXE::CPolicyProvider::InitializeMPConnection failed; 0x80092002 SMSPXE 22/03/2017 2:45:58 PM 4144 (0x1030)All you need to do is re-generate your distribution point certificates in the ConfigMgr console.
To do this, go to your Distribution Point properties, and on the general tab, just change the date by a day.
This will fire off a job and in a few minutes a new cert will be created and you will be right to go.
Remember, the error is generated by the Windows crypto libraries - it's not an SCCM specific error. In this case, error 0x80092002 means CRYPT_E_BAD_ENCODE (https://msdn.microsoft.com/en-us/library/windows/desktop/dd542646(v=vs.85).aspx) which makes for an easy and obvious place to start searching.
Remember kids, if you don't understand how Windows actually works, wildly clicking around won't help - nor will posting dumb and incorrect solutions on the Internet.
THANK YOU - YOU HAVE SAVED ACCELERATED AGING AND ME GETTING RADIATION POISONING from too much googling!
ReplyDeleteAlternatively - a huge thanks from here.
R
p.s that didnt come out right, lack of sleep im afraid.
ReplyDeleteAwesome of you to put this on the internet for battle hardened tech warriors (with the associated scars!)
Thanks again
Thank you for sharing...
ReplyDeleteThanks,
Vijay
dot net training in chennai
Thanks Man. This worked for me. You're correct in saying that there is a lot of wrong information out there about this. It's easier to regenerate a cert than rebuild site system roles.
ReplyDeleteThe main difference for me was that the error code was more generic and not indicative of a certificate issue like yours. 0x80070490
**** Manifestation in SMSPXE.log
**** One off chunk of errors after upgrading to ConfigMgr 1806 from 1802 in SMSPXE.log on the remote Distribution Point:
Could not load logging configuration for component ccmperf. Using default values. SMSPXE 21/08/2018 1:17:32 PM 7720 (0x1E28)
Unable to open Registry Value Software\Microsoft\CCM\HttpsState. Return Code [80070002]. Client HTTPS state is Unknown. SMSPXE 21/08/2018 1:17:32 PM 7720 (0x1E28)
RequestMPKeyInformation: Send() failed. SMSPXE 21/08/2018 1:17:32 PM 7720 (0x1E28)
Unsuccessful in getting MP key information. 80004005. SMSPXE 21/08/2018 1:17:32 PM 7720 (0x1E28)
PXE::MP_InitializeTransport failed; 0x80004005 SMSPXE 21/08/2018 1:17:32 PM 7720 (0x1E28)
PXE::MP_LookupDevice failed; 0x80070490 SMSPXE 21/08/2018 1:17:32 PM 7720 (0x1E28)
PXE Provider failed to initialize MP connection.
Element not found. (Error: 80070490; Source: Windows) SMSPXE 21/08/2018 1:17:32 PM 7720 (0x1E28)
RequestMPKeyInformation: Send() failed. SMSPXE 21/08/2018 1:17:32 PM 7720 (0x1E28)
Unsuccessful in getting MP key information. 80004005. SMSPXE 21/08/2018 1:17:32 PM 7720 (0x1E28)
PXE::MP_InitializeTransport failed; 0x80004005 SMSPXE 21/08/2018 1:17:32 PM 7720 (0x1E28)
PXE::MP_ReportStatus failed; 0x80070490 SMSPXE 21/08/2018 1:17:32 PM 7720 (0x1E28)
PXE::CPolicyProvider::InitializeMPConnection failed; 0x80070490 SMSPXE 21/08/2018 1:17:32 PM 7720 (0x1E28)
**** Subsequently, several of these same sets of errors were presenting whenever a client attempted to PXE boot at the remote site:
PXE::MP_GetList failed; 0x80070490 SMSPXE 22/08/2018 11:29:33 AM 2684 (0x0A7C)
PXE::MP_LookupDevice failed; 0x80070490 SMSPXE 22/08/2018 11:29:33 AM 2684 (0x0A7C)
PXE::MP_GetList failed; 0x80070490 SMSPXE 22/08/2018 11:29:33 AM 2684 (0x0A7C)
PXE::MP_ReportStatus failed; 0x80070490 SMSPXE 22/08/2018 11:29:33 AM 2684 (0x0A7C)
PXE Provider failed to process message.
Element not found. (Error: 80070490; Source: Windows) SMSPXE 22/08/2018 11:29:33 AM 2684 (0x0A7C)
Thank you, you made my day after searching for hours removing and adding roles and components over and over... and all the former SCCM gurus on the web had no clue or pointed in the wrong direction.
ReplyDeleteThanks again!!!
We porvide you quality item which you buy on a single click in Auckland New Zealand. Treasurebox nz is one of the most rising store which provide their customers all the items at low rates.
ReplyDelete
ReplyDeleteAnd indeed, I’m just always astounded concerning the remarkable things served by you. Some four facts on this page are undeniably the most effective I’ve had.
C C++ Training in Chennai |Best C C++ Training course in Chennai
linux Training in Chennai | Best linux Training in Chennai
Unix Training in Chennai | Best Unix Training in Chennai
uipath training in chennai | Best uipath training in chennai
Rprogramming Training in Chennai | Best Rprogramming Training in Chennai
Thanks for sharing valuable information.
ReplyDeleteDigital Marketing training Course in chennai
digital marketing training institute in chennai
digital marketing training in Chennai
digital marketing course in Chennai
digital marketing course training in omr
digital marketing certification in omr
digital marketing course training in velachery
digital marketing training center in chennai
digital marketing courses with placement in chennai
digital marketing certification in chennai
digital marketing institute in Chennai
digital marketing certification course in Chennai
digital marketing course training in Chennai
Digital Marketing course in Chennai with placement
digital marketing courses in chennai