none
Enrollment for Windows phone 8.1 RRS feed

  • Question

  • Hi guys,

    I'm trying to enrollment for windows phone 8 but it not work.

    Here is the provisioning XML:

    <wap-provisioningdoc version="1.1"> 
        <characteristic type="CertificateStore"> 
            <characteristic type="Root"> 
                <characteristic type="System"> 
                    <characteristic type="B5BA80E5C79585E914D08AA93C3E06297D72154C"> 
                        <parm name="EncodedCertificate" value="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" /> 
                    </characteristic> 
                </characteristic> 
            </characteristic> 
            <characteristic type="My" >       
                <characteristic type="User">
                    <characteristic type="F9A4F20FC50D990FDD0E3DB9AFCBF401818D5462">
                        <parm name="EncodedCertificate" value="MIICcTCCAV0CAQAwMDEuMCwGA1UEAxMlQjFDNDNDRDAtMTYyNC01RkJCLThFNTQtMzRDRjE3REZEM0ExADCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAK5nSSy6uvajihbHCmvY7UNLWWovGGVVSFlmzVPyxunr3reC8cnXbzuSjzi1rne36T3yl9nN3nYJybI9YPidEI0JnuW16Y7mhyPmEEo30fDv7pitF3VICtBB897InhR3eyTcvqc79HMOZIk509tVAeOzZKNsspe5byj4OEjSeh5lqIcXE9oW+Sdkc/NGRuddJnXp6Zyb1YdWc3WPW5nmVBuVK7pAbcwQqgvjlWhiE7JunM0ziVOleUieyzfpS22iqfbK2HMUrF9UxdwH5epp/MnLH753rtw6NyR87iiT56A+cs15FIJbzvu/Ck0kftjEhRv8aCwpEjH6hDaXAsbwc+sCAwEAAaAAMAkGBSsOAwIdBQADggEBADpS3rKtXPcLShdPdPy2ux/sx1H71OlkuFFRMGkOm6DMerrr2MnRzjg0GG47fhvjYCq3cV9FEbVTrxvz4TamNScD74CG02mrIADpN+EhD7WB2hmQrri+x+ZGUuNGO0v83TM8/I2V3LaCkGB9F6IJMUIfEXJqGTpjfOduyW1BHeHhmbcrpg0MFNt79FZeNmlWi7YXn+sgSZOCBYQz6G4sZu6PYqfRRP1DKAzvm00z+x02LFjDxFNtqRMb1wsnqjdGquMqqO2oWOBT02rhjvnSYdaT9HO58BXnQNxmeUue7RTXaLvnLn1ncjkK6xQHeY+ImXtLdvc9tUjoRUy6MLxl95Q=" />
                        <characteristic type="PrivateKeyContainer">
                            <parm name="KeySpec" value="2" />
                            <parm name="ContainerName" value="ConfigMgrEnrollment" />
                            <parm name="ProviderType" value="1" />
                        </characteristic>
                    </characteristic>              
                </characteristic> 
                <characteristic type="WSTEP"> 
                    <characteristic type="Renew"> 
                        <parm name="ROBOSupport" value="true" datatype="boolean"/> 
                        <parm name="RenewPeriod" value="60" datatype="integer"/> 
                        <parm name="RetryInterval" value="4" datatype="integer"/> 
                    </characteristic> 
                </characteristic> 
            </characteristic> 
        </characteristic>
        <characteristic type="APPLICATION">
            <parm name="APPID" value="w7"/>
            <parm name="PROVIDER-ID" value="cuongdang2565.cybersoft.vn"/>
            <parm name="NAME" value="MDM server"/>
            <parm name="DEFAULTENCODING" value="application/vnd.syncml.dm+wbxml" /> 
            <parm name="SSLCLIENTCERTSEARCHCRITERIA" value="E%3dcuongnd@gcs-vn.com%2cCN%3dcuongdang2565.cybersoft.vn%2cOU%3dIT%20Dev%2cO%3dGCS%2cL%3dHCM%2cS%3dHCM%2cC%3dVN&amp;Stores%3dMy%5CUser"/>
            <parm name="ADDR" value="https://cuongdang2565.cybersoft.vn/mdm/server"/>
            <parm name="ROLE" value="24"/>
            <characteristic type="APPAUTH">
                <parm name="AAUTHLEVEL" value="CLIENT"/>
                <parm name="AAUTHTYPE" value="DIGEST"/>
                <parm name="AAUTHSECRET" value="serversecret"/>
                <parm name="AAUTHDATA" value="Y3VvbmdkYW5nMjU2NQ=="/>
            </characteristic>
            <characteristic type="APPAUTH">
                <parm name="AAUTHLEVEL" value="APPSRV"/>
                <parm name="AAUTHTYPE" value="DIGEST"/>
                <parm name="AAUTHNAME" value="clientname"/>
                <parm name="AAUTHSECRET" value="clientsecret"/>
                <parm name="AAUTHDATA" value="clientnonce"/>
            </characteristic>
        </characteristic>
        <characteristic type="DMClient">
            <characteristic type="Provider"> 
                <characteristic type="TestMDMServer"> 
                    <characteristic type="Poll"> 
                        <parm name="NumberOfFirstRetries" value="8" datatype="integer" /> 
                        <parm name="IntervalForFirstSetOfRetries" value="15" datatype="integer" /> 
                        <parm name="NumberOfSecondRetries" value="5" datatype="integer" /> 
                        <parm name="IntervalForSecondSetOfRetries" value="3" datatype="integer" /> 
                        <parm name="NumberOfRemainingScheduledRetries" value="0" datatype="integer" /> 
                        <parm name="IntervalForRemainingScheduledRetries" value="1560" datatype="integer" /> 
                        <parm name="EntDeviceName" value="Administrator_WindowsPhone" datatype="string" />
                    </characteristic> 
                </characteristic> 
            </characteristic> 
        </characteristic>
    </wap-provisioningdoc>

    And logs file:

    Line #, Message, Time (s)
    1, Function entry. , 1.805509629
    2, [MDM Enroll Start] emailaddress: cuongnd@cuongdang2565.cybersoft.vn; servername: cuongdang2565.cybersoft.vn; password: Not given; domainusername: NULL. , 1.805720888
    3, Provider Id is cuongdang2565.cybersoft.vn , 1.805728148
    4, Opening a connection to server (cuongdang2565.cybersoft.vn). , 1.848271111
    5, Sending request to server (EnrollmentServer/Discovery.svc). , 1.848793185
    6, HttpSendRequest failed with (2147954445). , 2.066520148
    7, Request Type: ServerDiscovery. HRESULT: 0x00000000 , 4.270612148
    8, Data transmission final status (0). , 4.271105925
    9, Successfully discovered server (cuongdang2565.cybersoft.vn). , 4.271120740
    10, Opening a connection to server (cuongdang2565.cybersoft.vn). , 4.277057185
    11, Sending request to server (EnrollmentServer/Discovery.svc). , 4.277203111
    12, Processing successful response from discovery enpoint callback. , 4.510292444
    13, GetEndpointsFromResponse() uses authentication mode (OnPremise). , 4.513728296
    14, OnPremise authentication mode is used. , 4.513771851
    15, Policy service URL (https://cuongdang2565.cybersoft.vn/EnrollmentServer/EnrollmentPolicy.svc) and  enrollment service URL (https://cuongdang2565.cybersoft.vn/EnrollmentServer/Enrollment.svc) are used. , 4.514395407
    16, Request Type: EndpointDiscovery. HRESULT: 0x00000000 , 4.515026222
    17, Data transmission final status (0). , 4.515612000
    18, Leaving  CMachineEnroller::RetrieveEnrollmentPolicy with result (2149056526). , 4.516966518
    19, Failed to get enrollment policy. Using default policy to enroll. , 4.516984740
    20, Leaving  CMachineEnroller::EnrollDevice with result (2149056526). , 4.524439259
    21, Leaving  GetNewKeyContainer with result (2147942402). , 4.524958962
    22, Leaving  EnrollmentManager::Rollback with result (2147942402). , 4.525353333
    23, Leaving  GetEnterpriseManagementAppURL with result (2147942487). , 4.536731851
    24, Leaving  EnrollmentManager::StartEnrollmentProcess with result (2149056526). , 4.537339259
    25, [MDM Enroll End] Error HRESULT: 0x8018000E , 4.537361185
    26, Leaving  BeginEnrollmentProcess with result (2149056526). , 4.537407407
    27, [MDM Enroll Start] emailaddress: cuongnd@cuongdang2565.cybersoft.vn; servername: cuongdang2565.cybersoft.vn; password: Given; domainusername: NULL. , 10.629917481
    28, Provider Id is cuongdang2565.cybersoft.vn , 10.629925925
    29, Opening a connection to server (cuongdang2565.cybersoft.vn). , 10.635791111
    30, Sending request to server (EnrollmentServer/Discovery.svc). , 10.636058666
    31, Request Type: ServerDiscovery. HRESULT: 0x00000000 , 10.847802370
    32, Data transmission final status (0). , 10.848204592
    33, Successfully discovered server (cuongdang2565.cybersoft.vn). , 10.848218222
    34, Opening a connection to server (cuongdang2565.cybersoft.vn). , 10.853094518
    35, Sending request to server (EnrollmentServer/Discovery.svc). , 10.853315555
    36, Processing successful response from discovery enpoint callback. , 10.983956888
    37, GetEndpointsFromResponse() uses authentication mode (OnPremise). , 10.986319407
    38, OnPremise authentication mode is used. , 10.986354518
    39, Policy service URL (https://cuongdang2565.cybersoft.vn/EnrollmentServer/EnrollmentPolicy.svc) and  enrollment service URL (https://cuongdang2565.cybersoft.vn/EnrollmentServer/Enrollment.svc) are used. , 10.986733925
    40, Request Type: EndpointDiscovery. HRESULT: 0x00000000 , 10.987134074
    41, Data transmission final status (0). , 10.987546962
    42, Opening a connection to server (cuongdang2565.cybersoft.vn). , 10.995773481
    43, Sending request to server (EnrollmentServer/EnrollmentPolicy.svc). , 10.995986074
    44, GetPolicyFromResponse() uses hash algorithm (1.3.14.3.2.29). , 11.143507851
    45, Request Type: EnrollmentPolicy. HRESULT: 0x00000000 , 11.144449333
    46, Data transmission final status (0). , 11.144984888
    47, Function NCryptOpenKey failed with result (0x80090016). , 12.097971851
    48, Soap Request Message: <s:envelope xmlns:s="http://www.w3.org/2003/05/soap-envelope" xmlns:a="http://www.w3.org/2005/08/addressing" xmlns:u="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd" xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd" xmlns:wst="http://docs.oasis-open.org/ws-sx/ws-trust/200512" xmlns:ac="http://schemas.xmlsoap.org/ws/2006/12/authorization">
    	<s:header>
    		<a:action s:mustunderstand="1">http://schemas.microsoft.com/windows/pki/2009/01/enrollment/rst/wstep</a:action>
    		<a:messageid>urn:uuid:0d5a1441-5891-453b-becf-a2e5f6ea3749</a:messageid>
    		<a:replyto>
    			<a:address>http://www.w3.org/2005/08/addressing/anonymous</a:address>
    		</a:replyto>
    		<a:to s:mustunderstand="1">https://cuongdang2565.cybersoft.vn/enrollmentserver/enrollment.svc</a:to>
    		 , 14.780534814
    49, Opening a connection to server (cuongdang2565.cybersoft.vn). , 14.780641481
    50, Sending request to server (EnrollmentServer/Enrollment.svc). , 14.780905481
    51, Soap Response Message: <s:envelope xmlns:s="http://schemas.xmlsoap.org/soap/envelope/"  
                xmlns:a="http://www.w3.org/2005/08/addressing"  
                xmlns:u="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd"> 
        <s:header> 
            <action s:mustunderstand="1" >http://schemas.microsoft.com/windows/pki/2009/01/enrollment/rstrc/wstep</action> 
            <a:relatesto>urn:uuid:0d5a1441-5891-453b-becf-a2e5f6ea3749</a:relatesto> 
            <o:security s:mustunderstand="1" xmlns:o="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd"> 
                <u:timestamp u:id="_0"> 
                    <u:created>2015-08-11t00:32:59.420z</u:created> 
                    <u:expires>2018-05-31t00:37:59.420z</u:expires> 
                </u:timestamp> 
            </o:security>
        </s:header> 
        <s:body> 
            <requestsecuritytokenresponsecollection xmlns="http://docs.oasis-open.org/ws-sx/ws-trust/200512"> 
                <requestsecuritytokenresponse> 
                    <tokentype>http://schemas.microsoft.com/5.0.0.0/configurationmanager/enrollment/deviceenrollmenttoken</tokentype> 
                    <requestedsecuritytoken> 
                         , 15.280222666
    52, Request Type: DeviceEnrollment. HRESULT: 0x00000000 , 15.280446666
    53, Data transmission final status (0). , 15.280830222
    54, Enrollment succeeded with server (cuongdang2565.cybersoft.vn). , 15.280841629
    55, Leaving  CMachineEnroller::OnXmlStored with result (2147942487). , 15.402843259
    56, Leaving  CMachineEnroller::EnrollDevice with result (2147942487). , 15.406147259
    57, [MDM Cert Installer Start] Install cert in app container. , 15.493461037
    58, [MDM Cert Installer] Uninstalling enrollment cert for OMADM session. , 15.493514666
    59, [MDM Cert Installer End] Success , 15.493670074
    60, Provider Id is cuongdang2565.cybersoft.vn , 15.501388888
    61, Leaving  DoesUriExists with result (2248146946). , 15.503191851
    62, Leaving  EnrollmentManager::DeleteMaintenanceWindow with result (2248146946). , 15.503248000
    63, Provider Id is cuongdang2565.cybersoft.vn , 15.503378222
    64, Leaving  GetEnterpriseManagementAppURL with result (2147942487). , 15.518160148
    65, Leaving  EnrollmentManager::StartEnrollmentProcess with result (2147942487). , 15.518463851
    66, [MDM Enroll End] Error HRESULT: 0x80070057 , 15.518473777
    67, Leaving  BeginEnrollmentProcess with result (2147942487). , 15.518497629
    

    What is wrong?

    I'm using:

    1. Enrollment in local.

    2. Certificate has created follow by: https://www.youtube.com/watch?v=zwnEmLx2LRs

    And I have questions:

    1. What is fields require in <wap-provisioningdoc version="1.1">....</wap-provisioningdoc>  tag?

    2. I don't have CA certificate, It's required?


    Please help me to check it.

    Monday, August 17, 2015 7:22 AM

All replies

  • Enrollment via a provisioning XML isn't supported on Windows Phone 8.1

    These features will be made available in Windows Mobile 10

    Wednesday, October 21, 2015 9:20 PM