none
MDM Enroll: Failed to receive or parse certificate enroll response RRS feed

  • Question

  • We are working on an MDM system to work with Mobile Device Enrollment Protocol Version 2. The client to be enrolled is a Windows 10 computer. For Enrollment.svc we received:

    <s:Envelope xmlns:s="http://www.w3.org/2003/05/soap-envelope" xmlns:a="http://www.w3.org/2005/08/addressing" xmlns:u="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd" xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd" xmlns:wst="http://docs.oasis-open.org/ws-sx/ws-trust/200512" xmlns:ac="http://schemas.xmlsoap.org/ws/2006/12/authorization">
        <s:Header>
            <a:Action s:mustUnderstand="1">http://schemas.microsoft.com/windows/pki/2009/01/enrollment/RST/wstep</a:Action>
            <a:MessageID>urn:uuid:0d5a1441-5891-453b-becf-a2e5f6ea3749</a:MessageID>
            <a:ReplyTo>
                <a:Address>http://www.w3.org/2005/08/addressing/anonymous</a:Address>
            </a:ReplyTo>
            <a:To s:mustUnderstand="1">https://enterpriseenrollment.safeuem.com/EnrollmentServer/Enrollment.svc</a:To>
            <wsse:Security s:mustUnderstand="1">
                <wsse:BinarySecurityToken ValueType="urn:ietf:params:oauth:token-type:jwt" EncodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd#base64binary">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</wsse:BinarySecurityToken>
            </wsse:Security>
        </s:Header>
        <s:Body>
            <wst:RequestSecurityToken>
                <wst:TokenType>http://schemas.microsoft.com/5.0.0.0/ConfigurationManager/Enrollment/DeviceEnrollmentToken</wst:TokenType>
                <wst:RequestType>http://docs.oasis-open.org/ws-sx/ws-trust/200512/Issue</wst:RequestType>
                <wsse:BinarySecurityToken ValueType="http://schemas.microsoft.com/windows/pki/2009/01/enrollment#PKCS10" EncodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd#base64binary">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</wsse:BinarySecurityToken>
                <ac:AdditionalContext xmlns="http://schemas.xmlsoap.org/ws/2006/12/authorization">
                    <ac:ContextItem Name="UXInitiated">
                        <ac:Value>true</ac:Value>
                    </ac:ContextItem>
                    <ac:ContextItem Name="HWDevID">
                        <ac:Value>955DD864F1705FFEB5048A2E1F7DB7C6FA695DDCF1EDEE0233B9EFD6D3E6CE64</ac:Value>
                    </ac:ContextItem>
                    <ac:ContextItem Name="Locale">
                        <ac:Value>zh-CN</ac:Value>
                    </ac:ContextItem>
                    <ac:ContextItem Name="TargetedUserLoggedIn">
                        <ac:Value>false</ac:Value>
                    </ac:ContextItem>
                    <ac:ContextItem Name="EnrollmentData">
                        <ac:Value>TODOCustomDataFromAzureAD</ac:Value>
                    </ac:ContextItem>
                    <ac:ContextItem Name="OSEdition">
                        <ac:Value>48</ac:Value>
                    </ac:ContextItem>
                    <ac:ContextItem Name="DeviceName">
                        <ac:Value>wz-PC</ac:Value>
                    </ac:ContextItem>
                    <ac:ContextItem Name="MAC">
                        <ac:Value>3C-FD-20-52-41-53</ac:Value>
                    </ac:ContextItem>
                    <ac:ContextItem Name="MAC">
                        <ac:Value>40-0E-20-52-41-53</ac:Value>
                    </ac:ContextItem>
                    <ac:ContextItem Name="MAC">
                        <ac:Value>1C-87-2C-62-0F-CB</ac:Value>
                    </ac:ContextItem>
                    <ac:ContextItem Name="MAC">
                        <ac:Value>3E-C2-20-52-41-53</ac:Value>
                    </ac:ContextItem>
                    <ac:ContextItem Name="DeviceID">
                        <ac:Value>8A05C245F5106340BE2757E96D098C2A</ac:Value>
                    </ac:ContextItem>
                    <ac:ContextItem Name="EnrollmentType">
                        <ac:Value>Device</ac:Value>
                    </ac:ContextItem>
                    <ac:ContextItem Name="DeviceType">
                        <ac:Value>CIMClient_Windows</ac:Value>
                    </ac:ContextItem>
                    <ac:ContextItem Name="OSVersion">
                        <ac:Value>10.0.18362.0</ac:Value>
                    </ac:ContextItem>
                    <ac:ContextItem Name="ApplicationVersion">
                        <ac:Value>10.0.18362.0</ac:Value>
                    </ac:ContextItem>
                </ac:AdditionalContext>
            </wst:RequestSecurityToken>
        </s:Body>
    </s:Envelope>

    And here's the response we give:

    <s:Envelope
        xmlns:s="http://www.w3.org/2003/05/soap-envelope"
        xmlns:a="http://www.w3.org/2005/08/addressing">
        <s:Header>
            <a:Action s:mustUnderstand="1">http://schemas.microsoft.com/windows/pki/2009/01/enrollment/RSTRC/wstep</a:Action>
            <a:RelatesTo>urn:uuid:0d5a1441-5891-453b-becf-a2e5f6ea3749</a:RelatesTo>
            <o:Security
                xmlns:o="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd" s:mustUnderstand="1">
                <u:Timestamp u:Id="_0">
                    <u:Created>2020-07-02T16:27:26Z</u:Created>
                    <u:Expires>2020-08-02T16:27:26Z</u:Expires>
                </u:Timestamp>
            </o:Security>
        </s:Header>
        <s:Body>
            <wst:RequestSecurityTokenResponseCollection
                xmlns="http://docs.oasis-open.org/ws-sx/ws-trust/200512">
                <wst:RequestSecurityTokenResponse>
                    <wst:TokenType>http://schemas.microsoft.com/5.0.0.0/ConfigurationManager/Enrollment/DeviceEnrollmentToken</wst:TokenType>
                    <DispositionMessage
                        xmlns="http://schemas.microsoft.com/windows/pki/2009/01/enrollment">
                    </DispositionMessage>
                    <wst:RequestedSecurityToken>
                        <wsse:BinarySecurityToken
                            xmlns="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd" ValueType="http://schemas.microsoft.com/5.0.0.0/ConfigurationManager/Enrollment/DeviceEnrollmentProvisionDoc" EncodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd#base64binary">
          PHdhcC1wcm92aXNpb25pbmdkb2MgdmVyc2lvbj0iMS4xIj48Y2hhcmFjdGVyaXN0aWMgdHlwZT0iQ2VydGlmaWNhdGVTdG9yZSI+PGNoYXJhY3RlcmlzdGljIHR5cGU9IlJvb3QiPjxjaGFyYWN0ZXJpc3RpYyB0eXBlPSJTeXN0ZW0iPjxjaGFyYWN0ZXJpc3RpYyB0eXBlPSJDMTI5QjFDNTYxQkQzRTBBMkFFM0QwQjZGMzM4NjI1QTNFNkYwOUJGIj48cGFybSBuYW1lPSJFbmNvZGVkQ2VydGlmaWNhdGUiIHZhbHVlPSJNSUlHRXpDQ0EvdWdBd0lCQWdJUWZWdFJKclIydWhIYmRCWUx2Rk1OcHpBTkJna3Foa2lHOXcwQkFRd0ZBRENCaURFTE1Ba0dBMVVFQmhNQ1ZWTXhFekFSQmdOVkJBZ1RDazVsZHlCS1pYSnpaWGt4RkRBU0JnTlZCQWNUQzBwbGNuTmxlU0JEYVhSNU1SNHdIQVlEVlFRS0V4VlVhR1VnVlZORlVsUlNWVk5VSUU1bGRIZHZjbXN4TGpBc0JnTlZCQU1USlZWVFJWSlVjblZ6ZENCU1UwRWdRMlZ5ZEdsbWFXTmhkR2x2YmlCQmRYUm9iM0pwZEhrd0hoY05NVGd4TVRBeU1EQXdNREF3V2hjTk16QXhNak14TWpNMU9UVTVXakNCanpFTE1Ba0dBMVVFQmhNQ1IwSXhHekFaQmdOVkJBZ1RFa2R5WldGMFpYSWdUV0Z1WTJobGMzUmxjakVRTUE0R0ExVUVCeE1IVTJGc1ptOXlaREVZTUJZR0ExVUVDaE1QVTJWamRHbG5ieUJNYVcxcGRHVmtNVGN3TlFZRFZRUURFeTVUWldOMGFXZHZJRkpUUVNCRWIyMWhhVzRnVm1Gc2FXUmhkR2x2YmlCVFpXTjFjbVVnVTJWeWRtVnlJRU5CTUlJQklqQU5CZ2txaGtpRzl3MEJBUUVGQUFPQ0FROEFNSUlCQ2dLQ0FRRUExbk16MXRjOElOQUEwaGRGdU5ZK0I2SS94MEh1TWpESnNHejk5Si9MRXBnUExUK05UUUVNZ2c4WGYySXU2YmhJZWZzV2cwNnQxeklsazdjSHY3bFFQNmxNdzBBcTZUbi8yWUhLSHhZeVFkcUFKcmtqZW9jZ0h1UC9JSm84bFVSdmgzVUdrRUMwTXBNV0NSQUlJejdTM1ljUGIxMVJGR29LYWNWUEFYSnB6OU9UVEcwRW9LTWJnbjZ4bXJudHhaN0ZOM2lmbWdnMCsxWXVXTVFKRGdaa1c3dzMzUEdmS0dpb1ZyQ1NvMXlmdTRpWUNCc2tIYXN3aGE2dnNDNmVlcDNCd0VJYzRnTHc2dUJLMHUrUURyVEJRQmJ3YjRWQ1NtVDNwRENnL3I4dW95ZGFqb3RZdUszREdSZUVZKzF2VnYyRHkyQTB4SFMrNXAzYjRlVGx5Z3hmRlFJREFRQUJvNElCYmpDQ0FXb3dId1lEVlIwakJCZ3dGb0FVVTNtL1dxb3JTczlVZ09IWW04Q2Q4cklEWnNzd0hRWURWUjBPQkJZRUZJMk1Yc1JVcllyaGQrbWIrWnNGNGJnQmpXSGhNQTRHQTFVZER3RUIvd1FFQXdJQmhqQVNCZ05WSFJNQkFmOEVDREFHQVFIL0FnRUFNQjBHQTFVZEpRUVdNQlFHQ0NzR0FRVUZCd01CQmdnckJnRUZCUWNEQWpBYkJnTlZIU0FFRkRBU01BWUdCRlVkSUFBd0NBWUdaNEVNQVFJQk1GQUdBMVVkSHdSSk1FY3dSYUJEb0VHR1AyaDBkSEE2THk5amNtd3VkWE5sY25SeWRYTjBMbU52YlM5VlUwVlNWSEoxYzNSU1UwRkRaWEowYVdacFkyRjBhVzl1UVhWMGFHOXlhWFI1TG1OeWJEQjJCZ2dyQmdFRkJRY0JBUVJxTUdnd1B3WUlLd1lCQlFVSE1BS0dNMmgwZEhBNkx5OWpjblF1ZFhObGNuUnlkWE4wTG1OdmJTOVZVMFZTVkhKMWMzUlNVMEZCWkdSVWNuVnpkRU5CTG1OeWREQWxCZ2dyQmdFRkJRY3dBWVlaYUhSMGNEb3ZMMjlqYzNBdWRYTmxjblJ5ZFhOMExtTnZiVEFOQmdrcWhraUc5dzBCQVF3RkFBT0NBZ0VBTXI5aHZRNUl3MC9IdWtkTitKeDRHUUhjRXgyQWIvekRjTFJTbWpFem1sZFMrekdlYTZUdlZLcUpqVUFYYVBnUkVIelN5ckh4VlliSDdyTTJrWWIyT1ZHL1JyOFBvTHEwOTM1SnhDbzJGNTdrYURsNnI1Uk9WbSt5ZXp1L0NvYTl6Y1YzSEFPNE9MR2lIMTkrMjRyY1JraTJhQXJQc3JXMDRqVGtaNms0WmdsZTByajhuU2c2RjBBbnduSk9LZjBoUEh6UEUvdVdMTVV4UlAwVDdkV2JxV2xvZDN6dTRmK2srVFk0Q0ZNNW9vUTBuQm56dmc2czFTUTM2eU9vZU5EVDUrK1NSMlJpT1NMdnh2Y1J2aUtGeG1aRUpDYU9FREtOeUpPdUI1NkRQaS9aK2ZWR2ptTyt3ZWEwM0tiTklhaUdDcFhaTG9VbUd2MzhzYlpYUW0yVjBUUDJPUlFHZ2tFNDlZOVkzSUJicE5WOWxYajlwNXYvL2NXb2Fhc201NmVrQllkYnFiZTRveUFMbDZsRmhkMnppK1dKTjQ0cERmd0dGL1k0UUE1QzVCSUcrM3Z6eGhGb1l0L2ptUFFUMkJWUGk3RnAyUkJndkdRcTZqRzM1TFdqT2hTYkp1TUxlLzBDanJhWndUaVhXVGIycUhTaWhyWmU2OFprNnMrZ28vbHVucm90RWJhR21BaFlMY21zSldUeVhuVzBPTUd1ZjFwR2crcFJ5cmJ4bVJFMWE2VnFlOFlBc09mNHZtU3lyY2pDOGF6alVlcWtrK0I1eU9HQlFNa0tXK0VTUE1GZ0t1T1h3SWxDeXBUUFJwZ1NhYnVZME1MVERYSkxSMjdsazhReUtHT0hRK1N3TWo0SzAwdS9JNXNVS1VFcm1nUWZreTN4eHpsSVBLMWFFbjg9IiAvPjwvY2hhcmFjdGVyaXN0aWM+PC9jaGFyYWN0ZXJpc3RpYz48L2NoYXJhY3RlcmlzdGljPjwvY2hhcmFjdGVyaXN0aWM+ICAgIDxjaGFyYWN0ZXJpc3RpYyB0eXBlPSJDZXJ0aWZpY2F0ZVN0b3JlIj4gICAgICAgICAgPGNoYXJhY3RlcmlzdGljIHR5cGU9Ik15Ij48Y2hhcmFjdGVyaXN0aWMgdHlwZT0iVXNlciI+PGNoYXJhY3RlcmlzdGljIHR5cGU9Ijk5N0E2MkYxQjg2N0U5RkRENjlGMDg3NzlCODIwMTg3OTExNzJGNjgiPjxwYXJtIG5hbWU9IkVuY29kZWRDZXJ0aWZpY2F0ZSIgdmFsdWU9Ik1JSURXRENDQWtDZ0F3SUJBZ0lCQURBTkJna3Foa2lHOXcwQkFRVUZBREJhTVNFd0h3WURWUVFMRXhoRWIyMWhhVzRnUTI5dWRISnZiQ0JXWVd4cFpHRjBaV1F4SFRBYkJnTlZCQXNURkZCdmMybDBhWFpsVTFOTUlGZHBiR1JqWVhKa01SWXdGQVlEVlFRRERBMHFMbk5oWm1WMVpXMHVZMjl0TUI0WERUSXdNRGN3TWpFMk1qY3lObG9YRFRJd01EY3dNakUyTXpjeU5sb3dTakZJTUVZR0ExVUVBd3cvTmpsRFJqaEVSVUV0UTBNMk9DMDBOVUV4TFVFMlJqQXRSak5DT0RkR0lUaEJNRFZETWpRMVJqVXhNRFl6TkRCQ1JUSTNOVGRGT1RaRU1EazRRekpCTUlJQklqQU5CZ2txaGtpRzl3MEJBUUVGQUFPQ0FROEFNSUlCQ2dLQ0FRRUEyZE5VR1BaNFJnVWJTd0RpS3hTV2hLTDY4aVVGVW1rc0FGa3d6a2FtSWtPaElsaERKT3pncVE5ODZoN1B5T3Q2UklNUWVrelVBVDh4THR6bWdoN25JTTNXOUo1cUtsT2gxUnN1bkpSV080UW9PUlBvOEY0alhRK04vckJZbGJVbHZDZEg3ZmNIK3hyRjVCQmh3UVlSZGRrLzlYTExBaG44aDl2eEVHdmVSaURtSnRFRkhWNFJSMm53a1dJOHU3bDR6L1MxS0xxdndaMVZxam5ERmYySEJ2cThzcjl6UmpNaENxRE5zRXd2V29NRUxHZkpTT0xuY3VpeTZCb0VHOWR1bVBlcVpRYmVZdXIxVlBaWU1haG1oMXEvV01ybHhTRkp2TmRDM0NSQmRwdUV6QVJhKzVDRFloTjU3S0hDeEg4Wm0wL3BObGhXTHlsSHFuaW5ldlY1dlFJREFRQUJvemt3TnpBSkJnTlZIUk1FQWpBQU1Bc0dBMVVkRHdRRUF3SUVzREFkQmdOVkhRNEVGZ1FVSWFBcUJJcnF2bWFjeVhHSThpMzE2ZGFRWkRrd0RRWUpLb1pJaHZjTkFRRUZCUUFEZ2dFQkFFTlAvYnlVc2ZUb2FTU3ZuRTZEZ3l2TzJKN1RhbzFLQTdtaUFGSFhZdTgwdVZTOFpwZHRPekUwQ1dTYVE1enJzaWRaMnhwQ3JDM05QTk5MeWhabDBpQ3Z4SmRMbno1a1dlVjA1VGJDd1V1Y1R2UVpUYk45djZyZDFRUFBUUFMvREJOenpwY2diVWVnby9ON1VsaCtFWG1NOU1CT204VWd4aWZNNXJoYTZ0dlFGRkNqaWRsUm1uWkhTSUJ4YXFHWDlMTnJscm1DNGtGMlkraWc0MDZXQ2piYmRTam9zN1RFT1pVZHdEY3Nrb3RCdUpqTDMzVGRHV0JFTDM2ckFYTUt6NkM2SXU3c2dWWnRqMFdUOTRlQndBTHh5WFl5SXlmK05zZlpYUTBGdzdRY01aeWZNbi9JM2ljcVJjMFpFN2pqa0kwMnN0Mzg5OWZzV3VGVHBHek9mTE09IiAvPjwvY2hhcmFjdGVyaXN0aWM+ICAgICAgICAgICA8Y2hhcmFjdGVyaXN0aWMgdHlwZT0iUHJpdmF0ZUtleUNvbnRhaW5lciI+ICAgICAgICAgICAgIDxwYXJtIG5hbWU9IktleVNwZWMiIHZhbHVlPSIyIi8+ICAgICAgICAgICAgIDxwYXJtIG5hbWU9IkNvbnRhaW5lck5hbWUiIHZhbHVlPSJDb25maWdNZ3JFbnJvbGxtZW50Ii8+ICAgICAgICAgICAgIDxwYXJtIG5hbWU9IlByb3ZpZGVyVHlwZSIgdmFsdWU9IjEiLz4gICAgICAgICAgIDwvY2hhcmFjdGVyaXN0aWM+PC9jaGFyYWN0ZXJpc3RpYz4gIDwvY2hhcmFjdGVyaXN0aWM+PGNoYXJhY3RlcmlzdGljIHR5cGU9IkNBIj4gICA8Y2hhcmFjdGVyaXN0aWMgdHlwZT0iU3lzdGVtIj4gICAgICAgICAgIDxjaGFyYWN0ZXJpc3RpYyB0eXBlPSJEODlFM0JENDNENUQ5MDlCNDdBMTg5NzdBQTlENUNFMzZDRUUxODRDIj4gICAgICAgICAgIDxwYXJtIG5hbWU9IkVuY29kZWRDZXJ0aWZpY2F0ZSIgdmFsdWU9Ik1JSUZnVENDQkdtZ0F3SUJBZ0lRT1hKRU92a2l0MUhYMDJ3UTNURTFsVEFOQmdrcWhraUc5dzBCQVF3RkFEQjdNUXN3Q1FZRFZRUUdFd0pIUWpFYk1Ca0dBMVVFQ0F3U1IzSmxZWFJsY2lCTllXNWphR1Z6ZEdWeU1SQXdEZ1lEVlFRSERBZFRZV3htYjNKa01Sb3dHQVlEVlFRS0RCRkRiMjF2Wkc4Z1EwRWdUR2x0YVhSbFpERWhNQjhHQTFVRUF3d1lRVUZCSUVObGNuUnBabWxqWVhSbElGTmxjblpwWTJWek1CNFhEVEU1TURNeE1qQXdNREF3TUZvWERUSTRNVEl6TVRJek5UazFPVm93Z1lneEN6QUpCZ05WQkFZVEFsVlRNUk13RVFZRFZRUUlFd3BPWlhjZ1NtVnljMlY1TVJRd0VnWURWUVFIRXd0S1pYSnpaWGtnUTJsMGVURWVNQndHQTFVRUNoTVZWR2hsSUZWVFJWSlVVbFZUVkNCT1pYUjNiM0pyTVM0d0xBWURWUVFERXlWVlUwVlNWSEoxYzNRZ1VsTkJJRU5sY25ScFptbGpZWFJwYjI0Z1FYVjBhRzl5YVhSNU1JSUNJakFOQmdrcWhraUc5dzBCQVFFRkFBT0NBZzhBTUlJQ0NnS0NBZ0VBZ0JKbEZ6WU93OXNJczlDc1Z3MTI3YzBuMDB5dFVJTmg0cW9nVFFrdFpBbmN6b21mekQycDdQYlB3ZHp4MDdIV2V6Y29FU3RIMmpuR3ZEb1p0RittdlgyZG8yTkN0bmJ5cVRzcmtmamliOURzRmlDUUNUN2k2SFRKR0xTUjFHSmsyMytqQnZHSUdHcVFJank4L2hQd2h4Ujc5dVFmanRUa1VjWVJaMFlJVWN1R0ZGUS92RFArZm15Yy94YWRHTDFSampXbXAyYkljbWZiSVdheDFKdDRBOEJRT3VqTThOeThua3orcndXV05SOVhXcmYvenZrOXR5eTI5bFRkeU9jU09rMnVUSXEzWEpxMHR5QTl5bjhpTks1K08yaG1BVVRuQVU1R1U1c3pZUGVVdmxNM2tITkQ4ekxEVSsvYnF2NTBUbW5IYTR4Z2s5N0V4d3pmNFRLdXpKTTdVWGlWWjR2dVBWYitETkJwRHhzUDh5VW1hek50OTI1SCtuTkQ1WDRPcFdheEtYd3loR05WaWNRTndaTlVNQmtUck5OOU42ZnJYVHBzTlZ6YlFkY1MycWxKQzkvWWdJb0prMktPdFdiUEpZak5oTGl4UDZRNUQ5a0NudXNTVEpWODgyc0ZxVjRXZzh5NForTG9FNTNNVzRMVFRMUHRXLy9lNVhPc0l6c3RBTDgxVlhRSlNkaEpXQnAva2pibVVaSU84eVo5SEUwWHZNbnNReWJRdjBGZlFLbEVSUFNaNTFlSG5sQWZWMVNvUHYxMFl5K3hVR1VKNWxoQ0xrTWFUTFR3SlVkWitnUWVrOVFtUmtwUWdiTGV2bmkzL0djVjRjbFhoQjRQWTlicFlycldYMVV1Nmx6R0tBZ0VKVG00RGl1cDhreVhIQWMvRFZMMTdlOHZnZzhDQXdFQUFhT0I4akNCN3pBZkJnTlZIU01FR0RBV2dCU2dFUW9qUHBieEIremlyeW52Z3FWLzBEQ2t0REFkQmdOVkhRNEVGZ1FVVTNtL1dxb3JTczlVZ09IWW04Q2Q4cklEWnNzd0RnWURWUjBQQVFIL0JBUURBZ0dHTUE4R0ExVWRFd0VCL3dRRk1BTUJBZjh3RVFZRFZSMGdCQW93Q0RBR0JnUlZIU0FBTUVNR0ExVWRId1E4TURvd09LQTJvRFNHTW1oMGRIQTZMeTlqY213dVkyOXRiMlJ2WTJFdVkyOXRMMEZCUVVObGNuUnBabWxqWVhSbFUyVnlkbWxqWlhNdVkzSnNNRFFHQ0NzR0FRVUZCd0VCQkNnd0pqQWtCZ2dyQmdFRkJRY3dBWVlZYUhSMGNEb3ZMMjlqYzNBdVkyOXRiMlJ2WTJFdVkyOXRNQTBHQ1NxR1NJYjNEUUVCREFVQUE0SUJBUUFZaDFIY2RDRTluSXJnSjdjejBDN003UERteTE0UjNpSnZtM1dPbm5MKzVOYitxaCtjbGkzdkEwcCtydlNOYjNJOFF6dkFQK3U0MzF5cXFjYXU4dnpZN3FON1EvYUdObndVNE0zMDl6LyszcmkwaXZDUmx2NzlRMlIrL2N6U0FhRjlmZmdaR2NsQ0t4Ty9XSXU2cEtKbUJIYUlrVTRNaVJUT29rM0pNck82NkJRYXZISHhXL0JCQzVnQUNpSURFT1VNc2ZuTmtqY1o3VHZ4NURxMitVVVRKbld2dTZydlAzdDNPOUxFQXBFOUdRRFRGMXc1Mno5N0dBMUZ6Wk9GbGk5ZDMxa1dUejlSdmRWRkdEL3RTbzdvQm1GMEl4YTFEVkJ6SjBSSGZ4QmRpU3ByaFRFVXhPaXBha3lBdkdwNHo3aC9qblp5bVF5ZC90ZVJDQmFobzErViIgLz4gICAgICAgPC9jaGFyYWN0ZXJpc3RpYz4gICAgICAgPC9jaGFyYWN0ZXJpc3RpYz48L2NoYXJhY3RlcmlzdGljPjxjaGFyYWN0ZXJpc3RpYyB0eXBlPSJDQSI+ICAgICAgIDxjaGFyYWN0ZXJpc3RpYyB0eXBlPSJTeXN0ZW0iPiAgICAgICAgICAgPGNoYXJhY3RlcmlzdGljIHR5cGU9IkQ4OUUzQkQ0M0Q1RDkwOUI0N0ExODk3N0FBOUQ1Q0UzNkNFRTE4NEMiPiAgICAgICAgICAgICA8cGFybSBuYW1lPSJFbmNvZGVkQ2VydGlmaWNhdGUiIHZhbHVlPSJNSUlFTWpDQ0F4cWdBd0lCQWdJQkFUQU5CZ2txaGtpRzl3MEJBUVVGQURCN01Rc3dDUVlEVlFRR0V3SkhRakViTUJrR0ExVUVDQXdTUjNKbFlYUmxjaUJOWVc1amFHVnpkR1Z5TVJBd0RnWURWUVFIREFkVFlXeG1iM0prTVJvd0dBWURWUVFLREJGRGIyMXZaRzhnUTBFZ1RHbHRhWFJsWkRFaE1COEdBMVVFQXd3WVFVRkJJRU5sY25ScFptbGpZWFJsSUZObGNuWnBZMlZ6TUI0WERUQTBNREV3TVRBd01EQXdNRm9YRFRJNE1USXpNVEl6TlRrMU9Wb3dlekVMTUFrR0ExVUVCaE1DUjBJeEd6QVpCZ05WQkFnTUVrZHlaV0YwWlhJZ1RXRnVZMmhsYzNSbGNqRVFNQTRHQTFVRUJ3d0hVMkZzWm05eVpERWFNQmdHQTFVRUNnd1JRMjl0YjJSdklFTkJJRXhwYldsMFpXUXhJVEFmQmdOVkJBTU1HRUZCUVNCRFpYSjBhV1pwWTJGMFpTQlRaWEoyYVdObGN6Q0NBU0l3RFFZSktvWklodmNOQVFFQkJRQURnZ0VQQURDQ0FRb0NnZ0VCQUw1QW5mUnU0ZXAyaHh4TlJVU092a2JJZ3dhZHdTcitHQitPNUFMNjg2dGRVSW9XTVF1YUJ0REZjQ0xOU1MxVVk4eTJibWhHQzFQcXkwd2t3THh5VHVyeEZhNzBWSm9TQ3NONnNqTmc0dHFKVmZNaVdQUGUzTS92ZzRhaWpKUlBuMmp5bUpCR2hDZkhkci9qekRVc2kxNEhaR1dDd0Vpd3FKSDVZWjkySUZDb2tjZG10ZXQ0WWdOVzhJb2FFK294b3g2Z21mMDQ5dlluTWxodkIvVnJ1UHNVSzYrM3FzeldZMTl6ak5vRm1hZzRxTXNYZURaUnJPbWU5SGc2amM4UDJVTGltQXlyTDU4T0FkN3ZuNWxKOFMzZnJIUk5HNWkxUjhYbEtkSDVrQmpIWXB5K2c4Y21lejZLSmNmQTNaM21OV2dRSUoyUDJON1N3NFNjRFY3b0w4a0NBd0VBQWFPQndEQ0J2VEFkQmdOVkhRNEVGZ1FVb0JFS0l6Nlc4UWZzNHE4cDc0S2xmOUF3cExRd0RnWURWUjBQQVFIL0JBUURBZ0VHTUE4R0ExVWRFd0VCL3dRRk1BTUJBZjh3ZXdZRFZSMGZCSFF3Y2pBNG9EYWdOSVl5YUhSMGNEb3ZMMk55YkM1amIyMXZaRzlqWVM1amIyMHZRVUZCUTJWeWRHbG1hV05oZEdWVFpYSjJhV05sY3k1amNtd3dOcUEwb0RLR01HaDBkSEE2THk5amNtd3VZMjl0YjJSdkxtNWxkQzlCUVVGRFpYSjBhV1pwWTJGMFpWTmxjblpwWTJWekxtTnliREFOQmdrcWhraUc5dzBCQVFVRkFBT0NBUUVBQ0ZiOEF2Q2I2UCtrK3RaN3hrU0F6ay9FeGZZQVdNeW10cndVU1dnRWR1am03bDNzQWc5ZzFvMVFHRThtVGdIajVyQ2w3cis4ZEZSQnYvMzhFcmpIVDFyMGlXQUZmMkMzQlVyejl2SEN2OFM1ZElhMkxYMXJ6Tkx6UnQwdnh1QnF3OE0wQXl4OWx0MWF3ZzZuQ3BuQkJZdXJEQy96WERyUGJEZFZDWWZlVTBCc1dPLzh0cXRsYmdUMkc5dzg0Rm9WeHA3WjhWbElNQ0ZsQTJ6czZTRno3SnNEb2VBM3JhQVZHSS82dWdMT3B5eXBFQk1zMU9VSUpxc2lsMkQ0a0Y1MDFLS2FVNzN5cVdqZ29tN0MxMnl4b3crZXYrdG81MWJ5cnZMakt6ZzZDWUcxYTRYWHZpM3RQeHEzc21QaTlXSXNndFJxQUVGUThUbURuNVhwTnBhWWJnPT0iIC8+ICAgICAgICAgICAgICAgPC9jaGFyYWN0ZXJpc3RpYz4gICAgICAgPC9jaGFyYWN0ZXJpc3RpYz48L2NoYXJhY3RlcmlzdGljPiAgICA8L2NoYXJhY3RlcmlzdGljPjxjaGFyYWN0ZXJpc3RpYyB0eXBlPSJBUFBMSUNBVElPTiI+PHBhcm0gbmFtZT0iQVBQSUQiIHZhbHVlPSJ3NyIgLz48cGFybSBuYW1lPSJQUk9WSURFUi1JRCIgdmFsdWU9IkRFTU8gTURNIiAvPjxwYXJtIG5hbWU9Ik5BTUUiIHZhbHVlPSJXaW5kb3dzIE1ETSBEZW1vIFNlcnZlciIgLz48cGFybSBuYW1lPSJBRERSIiB2YWx1ZT0iaHR0cHM6Ly9lbnRlcnByaXNlZW5yb2xsbWVudC5zYWZldWVtLmNvbS9NYW5hZ2VtZW50U2VydmVyL01ETS5zdmMiIC8+PHBhcm0gbmFtZT0iU2VydmVyTGlzdCIgdmFsdWU9Imh0dHBzOi8vZW50ZXJwcmlzZWVucm9sbG1lbnQuc2FmZXVlbS5jb20vTWFuYWdlbWVudFNlcnZlci9TZXJ2ZXJMaXN0LnN2YyIgLz48cGFybSBuYW1lPSJST0xFIiB2YWx1ZT0iNDI5NDk2NzI5NSIgLz48cGFybSBuYW1lPSJCQUNLQ09NUEFUUkVUUllESVNBQkxFRCIgLz48cGFybSBuYW1lPSJERUZBVUxURU5DT0RJTkciIHZhbHVlPSJhcHBsaWNhdGlvbi92bmQuc3luY21sLmRtK3htbCIgLz48Y2hhcmFjdGVyaXN0aWMgdHlwZT0iQVBQQVVUSCI+PHBhcm0gbmFtZT0iQUFVVEhMRVZFTCIgdmFsdWU9IkNMSUVOVCIgLz48cGFybSBuYW1lPSJBQVVUSFRZUEUiIHZhbHVlPSJESUdFU1QiIC8+PHBhcm0gbmFtZT0iQUFVVEhTRUNSRVQiIHZhbHVlPSJkdW1teSIgLz48cGFybSBuYW1lPSJBQVVUSERBVEEiIHZhbHVlPSJub25jZSIgLz48L2NoYXJhY3RlcmlzdGljPjxjaGFyYWN0ZXJpc3RpYyB0eXBlPSJBUFBBVVRIIj48cGFybSBuYW1lPSJBQVVUSExFVkVMIiB2YWx1ZT0iQVBQU1JWIiAvPjxwYXJtIG5hbWU9IkFBVVRIVFlQRSIgdmFsdWU9IkRJR0VTVCIgLz48cGFybSBuYW1lPSJBQVVUSE5BTUUiIHZhbHVlPSJkdW1teSIgLz48cGFybSBuYW1lPSJBQVVUSFNFQ1JFVCIgdmFsdWU9ImR1bW15IiAvPjxwYXJtIG5hbWU9IkFBVVRIREFUQSIgdmFsdWU9Im5vbmNlIiAvPjwvY2hhcmFjdGVyaXN0aWM+PC9jaGFyYWN0ZXJpc3RpYz48Y2hhcmFjdGVyaXN0aWMgdHlwZT0iRE1DbGllbnQiPjxjaGFyYWN0ZXJpc3RpYyB0eXBlPSJQcm92aWRlciI+PGNoYXJhY3RlcmlzdGljIHR5cGU9IkRFTU8gTURNIj48Y2hhcmFjdGVyaXN0aWMgdHlwZT0iUG9sbCI+PHBhcm0gbmFtZT0iTnVtYmVyT2ZGaXJzdFJldHJpZXMiIHZhbHVlPSI4IiBkYXRhdHlwZT0iaW50ZWdlciIgLz48L2NoYXJhY3RlcmlzdGljPjwvY2hhcmFjdGVyaXN0aWM+PC9jaGFyYWN0ZXJpc3RpYz48L2NoYXJhY3RlcmlzdGljPjwvd2FwLXByb3Zpc2lvbmluZ2RvYz4=
                        
                        </wsse:BinarySecurityToken>
                    </wst:RequestedSecurityToken>
                    <RequestID
                        xmlns="http://schemas.microsoft.com/windows/pki/2009/01/enrollment">0
                    
                    
                    </RequestID>
                </wst:RequestSecurityTokenResponse>
            </wst:RequestSecurityTokenResponseCollection>
        </s:Body>
    </s:Envelope>


    In which we encode the following provisioning XML:

    <wap-provisioningdoc version="1.1">
        <characteristic type="CertificateStore">
            <characteristic type="Root">
                <characteristic type="System">
                    <characteristic type="C129B1C561BD3E0A2AE3D0B6F338625A3E6F09BF">
                        <parm name="EncodedCertificate" value="MIIGEzCCA/ugAwIBAgIQfVtRJrR2uhHbdBYLvFMNpzANBgkqhkiG9w0BAQwFADCBiDELMAkGA1UEBhMCVVMxEzARBgNVBAgTCk5ldyBKZXJzZXkxFDASBgNVBAcTC0plcnNleSBDaXR5MR4wHAYDVQQKExVUaGUgVVNFUlRSVVNUIE5ldHdvcmsxLjAsBgNVBAMTJVVTRVJUcnVzdCBSU0EgQ2VydGlmaWNhdGlvbiBBdXRob3JpdHkwHhcNMTgxMTAyMDAwMDAwWhcNMzAxMjMxMjM1OTU5WjCBjzELMAkGA1UEBhMCR0IxGzAZBgNVBAgTEkdyZWF0ZXIgTWFuY2hlc3RlcjEQMA4GA1UEBxMHU2FsZm9yZDEYMBYGA1UEChMPU2VjdGlnbyBMaW1pdGVkMTcwNQYDVQQDEy5TZWN0aWdvIFJTQSBEb21haW4gVmFsaWRhdGlvbiBTZWN1cmUgU2VydmVyIENBMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1nMz1tc8INAA0hdFuNY+B6I/x0HuMjDJsGz99J/LEpgPLT+NTQEMgg8Xf2Iu6bhIefsWg06t1zIlk7cHv7lQP6lMw0Aq6Tn/2YHKHxYyQdqAJrkjeocgHuP/IJo8lURvh3UGkEC0MpMWCRAIIz7S3YcPb11RFGoKacVPAXJpz9OTTG0EoKMbgn6xmrntxZ7FN3ifmgg0+1YuWMQJDgZkW7w33PGfKGioVrCSo1yfu4iYCBskHaswha6vsC6eep3BwEIc4gLw6uBK0u+QDrTBQBbwb4VCSmT3pDCg/r8uoydajotYuK3DGReEY+1vVv2Dy2A0xHS+5p3b4eTlygxfFQIDAQABo4IBbjCCAWowHwYDVR0jBBgwFoAUU3m/WqorSs9UgOHYm8Cd8rIDZsswHQYDVR0OBBYEFI2MXsRUrYrhd+mb+ZsF4bgBjWHhMA4GA1UdDwEB/wQEAwIBhjASBgNVHRMBAf8ECDAGAQH/AgEAMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAbBgNVHSAEFDASMAYGBFUdIAAwCAYGZ4EMAQIBMFAGA1UdHwRJMEcwRaBDoEGGP2h0dHA6Ly9jcmwudXNlcnRydXN0LmNvbS9VU0VSVHJ1c3RSU0FDZXJ0aWZpY2F0aW9uQXV0aG9yaXR5LmNybDB2BggrBgEFBQcBAQRqMGgwPwYIKwYBBQUHMAKGM2h0dHA6Ly9jcnQudXNlcnRydXN0LmNvbS9VU0VSVHJ1c3RSU0FBZGRUcnVzdENBLmNydDAlBggrBgEFBQcwAYYZaHR0cDovL29jc3AudXNlcnRydXN0LmNvbTANBgkqhkiG9w0BAQwFAAOCAgEAMr9hvQ5Iw0/HukdN+Jx4GQHcEx2Ab/zDcLRSmjEzmldS+zGea6TvVKqJjUAXaPgREHzSyrHxVYbH7rM2kYb2OVG/Rr8PoLq0935JxCo2F57kaDl6r5ROVm+yezu/Coa9zcV3HAO4OLGiH19+24rcRki2aArPsrW04jTkZ6k4Zgle0rj8nSg6F0AnwnJOKf0hPHzPE/uWLMUxRP0T7dWbqWlod3zu4f+k+TY4CFM5ooQ0nBnzvg6s1SQ36yOoeNDT5++SR2RiOSLvxvcRviKFxmZEJCaOEDKNyJOuB56DPi/Z+fVGjmO+wea03KbNIaiGCpXZLoUmGv38sbZXQm2V0TP2ORQGgkE49Y9Y3IBbpNV9lXj9p5v//cWoaasm56ekBYdbqbe4oyALl6lFhd2zi+WJN44pDfwGF/Y4QA5C5BIG+3vzxhFoYt/jmPQT2BVPi7Fp2RBgvGQq6jG35LWjOhSbJuMLe/0CjraZwTiXWTb2qHSihrZe68Zk6s+go/lunrotEbaGmAhYLcmsJWTyXnW0OMGuf1pGg+pRyrbxmRE1a6Vqe8YAsOf4vmSyrcjC8azjUeqkk+B5yOGBQMkKW+ESPMFgKuOXwIlCypTPRpgSabuY0MLTDXJLR27lk8QyKGOHQ+SwMj4K00u/I5sUKUErmgQfky3xxzlIPK1aEn8=" />
                    </characteristic>
                </characteristic>
            </characteristic>
        </characteristic>
        <characteristic type="CertificateStore">
            <characteristic type="My">
                <characteristic type="User">
                    <characteristic type="997A62F1B867E9FDD69F08779B82018791172F68">
                        <parm name="EncodedCertificate" value="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" />
                    </characteristic>
                    <characteristic type="PrivateKeyContainer">
                        <parm name="KeySpec" value="2" />
                        <parm name="ContainerName" value="ConfigMgrEnrollment" />
                        <parm name="ProviderType" value="1" />
                    </characteristic>
                </characteristic>
            </characteristic>
            <characteristic type="CA">
                <characteristic type="System">
                    <characteristic type="D89E3BD43D5D909B47A18977AA9D5CE36CEE184C">
                        <parm name="EncodedCertificate" value="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" />
                    </characteristic>
                </characteristic>
            </characteristic>
            <characteristic type="CA">
                <characteristic type="System">
                    <characteristic type="D89E3BD43D5D909B47A18977AA9D5CE36CEE184C">
                        <parm name="EncodedCertificate" value="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" />
                    </characteristic>
                </characteristic>
            </characteristic>
        </characteristic>
        <characteristic type="APPLICATION">
            <parm name="APPID" value="w7" />
            <parm name="PROVIDER-ID" value="DEMO MDM" />
            <parm name="NAME" value="Windows MDM Demo Server" />
            <parm name="ADDR" value="https://enterpriseenrollment.safeuem.com/ManagementServer/MDM.svc" />
            <parm name="ServerList" value="https://enterpriseenrollment.safeuem.com/ManagementServer/ServerList.svc" />
            <parm name="ROLE" value="4294967295" />
            <parm name="BACKCOMPATRETRYDISABLED" />
            <parm name="DEFAULTENCODING" value="application/vnd.syncml.dm+xml" />
            <characteristic type="APPAUTH">
                <parm name="AAUTHLEVEL" value="CLIENT" />
                <parm name="AAUTHTYPE" value="DIGEST" />
                <parm name="AAUTHSECRET" value="dummy" />
                <parm name="AAUTHDATA" value="nonce" />
            </characteristic>
            <characteristic type="APPAUTH">
                <parm name="AAUTHLEVEL" value="APPSRV" />
                <parm name="AAUTHTYPE" value="DIGEST" />
                <parm name="AAUTHNAME" value="dummy" />
                <parm name="AAUTHSECRET" value="dummy" />
                <parm name="AAUTHDATA" value="nonce" />
            </characteristic>
        </characteristic>
        <characteristic type="DMClient">
            <characteristic type="Provider">
                <characteristic type="DEMO MDM">
                    <characteristic type="Poll">
                        <parm name="NumberOfFirstRetries" value="8" datatype="integer" />
                    </characteristic>
                </characteristic>
            </characteristic>
        </characteristic>
    </wap-provisioningdoc>

    And in the client we see a response of error with 0x80192f76, and in Event Viewer we see error: MDM Enroll: Failed to reeceive or parse certificate enroll response.

    Please advise what's happening and what should we do next. Thanks!

    Thursday, July 2, 2020 5:59 PM

Answers

All replies

  • Linwx1978

    Thank you for your question.  An engineer from the protocols team will contact you soon.


    Bryan S. Burgin Senior Escalation Engineer Microsoft Protocol Open Specifications Team

    Thursday, July 2, 2020 6:53 PM
    Moderator
  • Hi Linwx1978,

    The purpose of this forum is to support the Open Specifications documentation. You can read about the Microsoft Open Specifications program at https://msdn.microsoft.com/en-us/openspecifications/default. The library of Open Specification documents is located at https://msdn.microsoft.com/library/dd208104.aspx.

    The documents that describe how to implement MDM are:

    [MS-MDE]: Mobile Device Enrollment Protocol

    https://docs.microsoft.com/en-us/openspecs/windows_protocols/ms-mde/5c841535-042e-489e-913c-9d783d741267

    [MS-MDE2]: Mobile Device Enrollment Protocol Version 2

    https://docs.microsoft.com/en-us/openspecs/windows_protocols/ms-mde2/4d7eadd5-3951-4f1c-8159-c39e07cbe692

    If you are implementing MDE, please review these documents to see if they address your concern. We're happy to help with any questions you have on the documents. 

    If you are not implementing MDM, you may be able to find assistance with your question on one of the Intune forums. 

    Enabling Mobile Device Management with Windows Intune
    http://technet.microsoft.com/en-us/library/jj733654.aspx

    Windows Intune Forums
    http://social.technet.microsoft.com/Forums/windows/en-US/home?category=windowsintune

    Thanks,


    Jeff McCashland | Microsoft Protocols Open Specifications Team


    Thursday, July 2, 2020 8:53 PM
    Moderator
  • Hi Jeff McCashland,

    I am a colleague of Linwx1978,we are implementing MDE according  

    [MS-MDE2]: Mobile Device Enrollment Protocol Version 2



    We read the protocol carefully and responded to windows10 according to the protocol ,But there is always an error here

    This strange error has seriously delayed our development progress,Can you help us diagnose why the error occurred? And how should we correct

    The  below is response to windows 10

    <s:Envelope xmlns:s="http://schemas.xmlsoap.org/soap/envelope/" xmlns:a="http://www.w3.org/2005/08/addressing" xmlns:u="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd" xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd" xmlns:wst="http://docs.oasis-open.org/ws-sx/ws-trust/200512">
        <s:Header>
            <a:Action s:mustUnderstand="1">
              http://schemas.microsoft.com/windows/pki/2009/01/enrollment/RSTRC/wstep
           </a:Action>
            <a:RelatesTo>urn:uuid:0d5a1441-5891-453b-becf-a2e5f6ea3749</a:RelatesTo>
            <o:Security s:mustUnderstand="1" xmlns:o="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd">
                <u:Timestamp u:Id="_0">
                    <u:Created>2020-07-06T07:00:33Z</u:Created>
                    <u:Expires>2020-08-06T07:00:33Z</u:Expires>
                </u:Timestamp>
            </o:Security>
        </s:Header>
        <s:Body>
            <wst:RequestSecurityTokenResponseCollection xmlns="http://docs.oasis-open.org/ws-sx/ws-trust/200512">
                <wst:RequestSecurityTokenResponse>
                    <wst:TokenType>http://schemas.microsoft.com/5.0.0.0/ConfigurationManager/Enrollment/DeviceEnrollmentToken</wst:TokenType>
                    <DispositionMessage xmlns="http://schemas.microsoft.com/windows/pki/2009/01/enrollment" />
                    <wst:RequestedSecurityToken>
                        <wsse:BinarySecurityToken xmlns="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd" ValueType="http://schemas.microsoft.com/5.0.0.0/ConfigurationManager/Enrollment/DeviceEnrollmentProvisionDoc" EncodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd#base64binary">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</wsse:BinarySecurityToken>
                    </wst:RequestedSecurityToken>
                    <RequestID xmlns="http://schemas.microsoft.com/windows/pki/2009/01/enrollment">0</RequestID>
                </wst:RequestSecurityTokenResponse>
            </wst:RequestSecurityTokenResponseCollection>
        </s:Body>
    </s:Envelope>

    The below is wap-provisioning data

    <wap-provisioningdoc version="1.1">
        <characteristic type="CertificateStore">
            <characteristic type="Root">
                <characteristic type="System">
                    <characteristic type="33E4E80807204C2B6182A3A14B591ACD25B5F0DB">
                        <parm name="EncodedCertificate" value="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" />
                    </characteristic>
                </characteristic>
            </characteristic>
            <characteristic type="My">
                <characteristic type="User">
                    <characteristic type="ADA8D678866B381FAEA3F1546C93A14DD77FE826">
                        <parm name="EncodedCertificate" value="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" />
                    </characteristic>
                    <characteristic type="PrivateKeyContainer">
                        <parm name="KeySpec" value="2" />
                        <parm name="ContainerName" value="ConfigMgrEnrollment" />
                        <parm name="ProviderType" value="1" />
                    </characteristic>
                </characteristic>
                <characteristic type="WSTEP">
                    <characteristic type="Renew">
                        <parm name="ROBOSupport" value="true" datatype="boolean" />
                        <parm name="RenewPeriod" value="60" datatype="integer" />
                        <parm name="RetryInterval" value="4" datatype="integer" />
                    </characteristic>
                </characteristic>
            </characteristic>
            <characteristic type="CA">
                <characteristic type="System">
                    <characteristic type="D89E3BD43D5D909B47A18977AA9D5CE36CEE184C">
                        <parm name="EncodedCertificate" value="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" />
                    </characteristic>
                </characteristic>
            </characteristic>
            <characteristic type="CA">
                <characteristic type="System">
                    <characteristic type="D89E3BD43D5D909B47A18977AA9D5CE36CEE184C">
                        <parm name="EncodedCertificate" value="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" />
                    </characteristic>
                </characteristic>
            </characteristic>
        </characteristic>
        <characteristic type="APPLICATION">
            <parm name="APPID" value="w7" />
            <parm name="PROVIDER-ID" value="DEMO MDM" />
            <parm name="NAME" value="Microsoft" />
            <parm name="ROLE" value="4294967295" />
            <!-- Discriminator to set whether the client should do Certificate Revocation List checking. -->
            <parm name="CRLCheck" value="0" />
            <parm name="CONNRETRYFREQ" value="6" />
            <parm name="INITIALBACKOFFTIME" value="30000" />
            <parm name="MAXBACKOFFTIME" value="120000" />
            <parm name="BACKCOMPATRETRYDISABLED" />
            <parm name="DEFAULTENCODING" value="application/vnd.syncml.dm+wbxml" />
            <characteristic type="APPAUTH">
                <parm name="AAUTHLEVEL" value="CLIENT" />
                <parm name="AAUTHTYPE" value="DIGEST" />
                <parm name="AAUTHSECRET" value="password1" />
                <parm name="AAUTHDATA" value="B64encodedBinaryNonceInsertedHere" />
            </characteristic>
            <characteristic type="APPAUTH">
                <parm name="AAUTHLEVEL" value="APPSRV" />
                <parm name="AAUTHTYPE" value="BASIC" />
                <parm name="AAUTHNAME" value="testclient" />
                <parm name="AAUTHSECRET" value="password2" />
            </characteristic>
        </characteristic>
        <characteristic type="Registry">
            <characteristic type="HKLM\Software\Windows\CurrentVersion\MDM\MachineEnrollment">
                <parm name="DeviceName" value="" datatype="string" />
            </characteristic>
        </characteristic>
        <characteristic type="Registry">
            <characteristic type="HKLM\SOFTWARE\Windows\CurrentVersion\MDM\MachineEnrollment">
                <!--Thumbprint of root certificate. -->
                <parm name="SslServerRootCertHash" value="33E4E80807204C2B6182A3A14B591ACD25B5F0DB" datatype="string" />
                <!-- Store for device certificate. -->
                <parm name="SslClientCertStore" value="MY%5CSystem" datatype="string" />
                <!--  Common name of issued certificate. -->
                <parm name="SslClientCertSubjectName" value="216FFB68-8F63-482C-8163-0F0368!8A05C245F5106340BE2757E96D098C2A" datatype="string" />
                <!--Thumbprint of issued certificate. -->
                <parm name="SslClientCertHash" value="ADA8D678866B381FAEA3F1546C93A14DD77FE826" datatype="string" />
            </characteristic>
            <characteristic type="HKLM\Security\Provisioning\OMADM\Accounts\037B1F0D3842015588E753CDE76EC724">
                <parm name="SslClientCertReference" value="My;System;ADA8D678866B381FAEA3F1546C93A14DD77FE826" datatype="string" />
            </characteristic>
        </characteristic>
        <characteristic type="DMClient">
            <!-- In Windows 10, an enrollment server should use DMClient CSP XML to configure DM polling schedules. -->
            <characteristic type="Provider">
                <!-- ProviderID in DMClient CSP must match to PROVIDER-ID in w7 APPLICATION characteristics -->
                <characteristic type="TestMDMServer">
                    <parm name="UPN" value="UserPrincipalName@safeuem.com" datatype="string" />
                    <characteristic type="Poll">
                        <parm name="NumberOfFirstRetries" value="8" datatype="integer" />
                        <parm name="IntervalForFirstSetOfRetries" value="15" datatype="integer" />
                        <parm name="NumberOfSecondRetries" value="5" datatype="integer" />
                        <parm name="IntervalForSecondSetOfRetries" value="3" datatype="integer" />
                        <parm name="NumberOfRemainingScheduledRetries" value="0" datatype="integer" />
                        <!-- Windows 10 supports MDM push for real-time communication. The DM client long term polling schedule’s retry waiting interval should be more than 24 hours (1440) to reduce the impact to data consumption and battery life. Refer to the DMClient Configuration Service Provider section for information about polling schedule parameters.-->
                        <parm name="IntervalForRemainingScheduledRetries" value="1560" datatype="integer" />
                        <parm name="PollOnLogin" value="true" datatype="boolean" />
                    </characteristic>
                    <parm name="EntDeviceName" value="Administrator_Windows" datatype="string" />
                </characteristic>
            </characteristic>
        </characteristic>
    </wap-provisioningdoc>

    • Edited by wangzhu1 Monday, July 6, 2020 10:09 AM
    Monday, July 6, 2020 9:10 AM
  • Hi linwx1978 and wangzhu1,

    I see your second response is different from the first response that linwx1978 posted above, and that you've fixed the missing prefix definitions before the header. 

    Does the new response still get ERROR_HTTP_HEADER_NOT_FOUND, or are you getting a different error now? 

    Thanks,


    Jeff McCashland | Microsoft Protocols Open Specifications Team

    Monday, July 6, 2020 7:48 PM
    Moderator
  • Hi, Jeff,

    Yes basically we have the same outcome in the client computer:

    MDM Enroll: Failed to reeceive or parse certificate enroll response.

    Monday, July 6, 2020 8:47 PM
  • Hi linwx1978,

    Previously you mentioned "And in the client we see a response of error with 0x80192f76, and in Event Viewer we see error: MDM Enroll: Failed to reeceive or parse certificate enroll response."

    Does your client still get the 0x80192f76 (ERROR_HTTP_HEADER_NOT_FOUND), or is there a different error code now? Also, does the event in the Event Viewer have any additional details available? Please provide complete error information from the client and event log, as these may have hints of where the problem lies. 

    Thanks,


    Jeff McCashland | Microsoft Protocols Open Specifications Team

    Monday, July 6, 2020 9:39 PM
    Moderator
  • Hi Jeff,

    we still get  still get the 0x80192f76 from Event viewer 

    This link contains all event logs

    link: https://pan.baidu.com/s/1m3yZljzBWmJTkC2JRT3BZg  extract  code: txd9

    The data of this link was traced by fiddler during registration

    link: https://pan.baidu.com/s/10FAgg_xWwbgspIVziX5DzA extract  code: kqw9

    • Edited by wangzhu1 Tuesday, July 7, 2020 7:33 AM
    Tuesday, July 7, 2020 1:29 AM
  • Hi wangzhu1,

    When I attempt to download the file, I get the message "Please use Baidu App Scan Code to log in". 

    Please send me email at our alias DocHelp @microsoft .com, so I can set up a file transfer workspace to securely share files. 

    Thanks,


    Jeff McCashland | Microsoft Protocols Open Specifications Team

    Tuesday, July 7, 2020 7:33 PM
    Moderator
  • Hi, Jeff,

    We fixed some issues with the certificates encapsulated in provisioning data. Now it looks like this

    <s:Envelope
        xmlns:s="http://schemas.xmlsoap.org/soap/envelope/"
        xmlns:a="http://www.w3.org/2005/08/addressing"
        xmlns:u="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd"
        xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd"
        xmlns:wst="http://docs.oasis-open.org/ws-sx/ws-trust/200512">
        <s:Header>
            <a:Action s:mustUnderstand="1" >
              http://schemas.microsoft.com/windows/pki/2009/01/enrollment/RSTRC/wstep
           </a:Action>
            <a:RelatesTo>urn:uuid:0d5a1441-5891-453b-becf-a2e5f6ea3749</a:RelatesTo>
            <o:Security s:mustUnderstand="1"
                xmlns:o=
              "http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd">
                <u:Timestamp u:Id="_0">
                    <u:Created>2020-07-08T13:28:43Z</u:Created>
                    <u:Expires>2020-08-08T13:28:43Z</u:Expires>
                </u:Timestamp>
            </o:Security>
        </s:Header>
        <s:Body>
            <wst:RequestSecurityTokenResponseCollection
                xmlns="http://docs.oasis-open.org/ws-sx/ws-trust/200512">
                <wst:RequestSecurityTokenResponse>
                    <wst:TokenType>http://schemas.microsoft.com/5.0.0.0/ConfigurationManager/Enrollment/DeviceEnrollmentToken</wst:TokenType>
                    <DispositionMessage
                        xmlns="http://schemas.microsoft.com/windows/pki/2009/01/enrollment"/>
                        <wst:RequestedSecurityToken>
                            <wsse:BinarySecurityToken
                                xmlns="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd" ValueType="http://schemas.microsoft.com/5.0.0.0/ConfigurationManager/Enrollment/DeviceEnrollmentProvisionDoc" EncodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd#base64binary">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
                            </wsse:BinarySecurityToken>
                        </wst:RequestedSecurityToken>
                        <RequestID
                            xmlns="http://schemas.microsoft.com/windows/pki/2009/01/enrollment">0
                        </RequestID>
                    </wst:RequestSecurityTokenResponse>
                </wst:RequestSecurityTokenResponseCollection>
            </s:Body>
        </s:Envelope>

    And the provisioning certificates are

    <wap-provisioningdoc version="1.1">
        <characteristic type="CertificateStore">
            <characteristic type="Root">
                <characteristic type="System">
                    <characteristic type="2796BAE63F1801E277261BA0D77770028F20EEE4">
                        <parm name="EncodedCertificate" value="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" />
                    </characteristic>
                </characteristic>
            </characteristic>
            <characteristic type="My">
                <characteristic type="User">
                    <characteristic type="7E84A59091D74EE9132A0C248A38E2D58AA37659">
                        <parm name="EncodedCertificate" value="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" />
                    </characteristic>
                    <characteristic type="PrivateKeyContainer">
                        <parm name="KeySpec" value="2"/>
                        <parm name="ContainerName" value="ConfigMgrEnrollment"/>
                        <parm name="ProviderType" value="1"/>
                    </characteristic>
                </characteristic>
                <characteristic type="WSTEP">
                    <characteristic type="Renew">
                        <parm name="ROBOSupport" value="true" datatype="boolean"/>
                        <parm name="RenewPeriod" value="60" datatype="integer"/>
                        <parm name="RetryInterval" value="4" datatype="integer"/>
                    </characteristic>
                </characteristic>
            </characteristic>
            <characteristic type="CA">
                <characteristic type="System">
                    <characteristic type="CA0D4E9FB4DBACBDD7126F1D1D94057BF442DB6F">
                        <parm name="EncodedCertificate" value="MIIGNjCCBR6gAwIBAgIIPQrhsJ+RtMEwDQYJKoZIhvcNAQELBQAwgbQxCzAJBgNVBAYTAlVTMRAwDgYDVQQIEwdBcml6b25hMRMwEQYDVQQHEwpTY290dHNkYWxlMRowGAYDVQQKExFHb0RhZGR5LmNvbSwgSW5jLjEtMCsGA1UECxMkaHR0cDovL2NlcnRzLmdvZGFkZHkuY29tL3JlcG9zaXRvcnkvMTMwMQYDVQQDEypHbyBEYWRkeSBTZWN1cmUgQ2VydGlmaWNhdGUgQXV0aG9yaXR5IC0gRzIwHhcNMjAwNjExMTgyNDMyWhcNMjEwNjA1MTU0MDQxWjA7MSEwHwYDVQQLExhEb21haW4gQ29udHJvbCBWYWxpZGF0ZWQxFjAUBgNVBAMMDSouc2FmZXVlbS5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNfQLgIEcPKSJkRYhEJPeGAujAGzWaVY9MwCXwaDusNlUapxZM8O1DRaNSWM7LMJQNaDNgQoGeiw2dLNJrANdYw4awnw9qiDFOAs7SyjE3IcJTUdkttPMYQrhoZTx+gA+I0k6j9IbLh41FXChteyWjb8Us5aKGlE8XBMJxpmouSdJiMpynGmMvcUBzETIy7B9C12PdR0tIFO8kEIrhBAs6GCzZq7NFJ2nuRVLsVJSkExqy7c1zwSYNYybrLgNzD7NPEtiRQzIknX4nNkQGUT153ZaB/OFFUZYEG7Z+jqHkLj9654o/72FbhzMyOvWCLmhvsmyiHvhDV4tsiS/2w2HnAgMBAAGjggLCMIICvjAMBgNVHRMBAf8EAjAAMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAOBgNVHQ8BAf8EBAMCBaAwOAYDVR0fBDEwLzAtoCugKYYnaHR0cDovL2NybC5nb2RhZGR5LmNvbS9nZGlnMnMxLTIwMjEuY3JsMF0GA1UdIARWMFQwSAYLYIZIAYb9bQEHFwEwOTA3BggrBgEFBQcCARYraHR0cDovL2NlcnRpZmljYXRlcy5nb2RhZGR5LmNvbS9yZXBvc2l0b3J5LzAIBgZngQwBAgEwdgYIKwYBBQUHAQEEajBoMCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5nb2RhZGR5LmNvbS8wQAYIKwYBBQUHMAKGNGh0dHA6Ly9jZXJ0aWZpY2F0ZXMuZ29kYWRkeS5jb20vcmVwb3NpdG9yeS9nZGlnMi5jcnQwHwYDVR0jBBgwFoAUQMK9J47MNIMwojPX+2yz8LQsgM4wJQYDVR0RBB4wHIINKi5zYWZldWVtLmNvbYILc2FmZXVlbS5jb20wHQYDVR0OBBYEFKGdPmS5v5UkP3xvcJ38RYGbY782MIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDxAHYA9lyUL9F3MCIUVBgIMJRWjuNNExkzv98MLyALzE7xZOMAAAFypKCBoAAABAMARzBFAiEAuqZeMe0Il99gS/uhjWvcEOm4pxgh59L9abUakbE6DVMCICS8JORDod1/khiojSeHsTqok/q9F+mpsu/r92hZDVBCAHcAXNxDkv7mq0VEsV6a1FbmEDf71fpH3KFzlLJe5vbHDsoAAAFypKCXSwAABAMASDBGAiEA5f5Yau00GPWDaDlD/Q/vFkf+FV6dwHWIiw9G+9Moo4ECIQC1h76042bszYvobax2bERRjA/wkN2H7fvVm2djmILXejANBgkqhkiG9w0BAQsFAAOCAQEAab05GhUZttVZPzCHH1sTyR3RUepKRPnlCkUt+6flanIj2NhCajUsFe6PzsaipjM4fsDu+aW7KsqL8eyUzRE9r5d1sb6opiNE8Q2kSOwUZLPRA2lpR5F9Y4MdKmQ1vJ9mEGKYZe2I/lc3SFIqCVgvm+p3AwqyGJoZDMi7kUmUhzn4wgwI1R5/zKGI7E9ebwrBXtrVeRp382gLoNaf/dtNukfJRC3OdUWIQTSMrQcltDsMzvTSn3DIYcHSNJpg1Ngn1whzh8GUQFqtt33dAwjV3Sz1Q6vfbs9BKbjFxUhHdtIlth5oPt4Sgvc4emuirJhTbdeGAcV+lDrUNHnJzuNB2g==" />
                    </characteristic>
                </characteristic>
            </characteristic>
            <characteristic type="CA">
                <characteristic type="System">
                    <characteristic type="27AC9369FAF25207BB2627CEFACCBE4EF9C319B8">
                        <parm name="EncodedCertificate" value="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" />
                    </characteristic>
                </characteristic>
            </characteristic>
            <characteristic type="CA">
                <characteristic type="System">
                    <characteristic type="340B2880F446FCC04E59ED33F52B3D08D6242964">
                        <parm name="EncodedCertificate" value="MIIEfTCCA2WgAwIBAgIDG+cVMA0GCSqGSIb3DQEBCwUAMGMxCzAJBgNVBAYTAlVTMSEwHwYDVQQKExhUaGUgR28gRGFkZHkgR3JvdXAsIEluYy4xMTAvBgNVBAsTKEdvIERhZGR5IENsYXNzIDIgQ2VydGlmaWNhdGlvbiBBdXRob3JpdHkwHhcNMTQwMTAxMDcwMDAwWhcNMzEwNTMwMDcwMDAwWjCBgzELMAkGA1UEBhMCVVMxEDAOBgNVBAgTB0FyaXpvbmExEzARBgNVBAcTClNjb3R0c2RhbGUxGjAYBgNVBAoTEUdvRGFkZHkuY29tLCBJbmMuMTEwLwYDVQQDEyhHbyBEYWRkeSBSb290IENlcnRpZmljYXRlIEF1dGhvcml0eSAtIEcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv3FiCPH6WTT3G8kYo/eASVjpIoMTpsUgQwE7hPHmhUmfJ+r2hBtOoLTbcJjHMgGxBT4HTu70+k8vWTAi56sZVmvigAf88xZ1gDlRe+X5NbZ0TqmNghPktj+pA4P6or6KFWp/3gvDthkUBcrqw6gElDtGfDIN8wBmIsiNaW02jBEYt9OyHGC0OPoCjM7T3UYH3go+6118yHz7sCtTpJJiaVElBWEaRIGMLKlDliPfrDqBmg4pxRyp6V0etp6eMAo5zvGIgPtLXcwy7IViQyU0AlYnAZG0O3AqP26x6JyIAX2f1PnbU21gnb8s51iruF9G/M7EGwM8CetJMVxpRrPgRwIDAQABo4IBFzCCARMwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwHQYDVR0OBBYEFDqahQcQZyi27/a9BUFuIMGU2g/eMB8GA1UdIwQYMBaAFNLEsNKR1EwRcbNhyz2h/t2oatTjMDQGCCsGAQUFBwEBBCgwJjAkBggrBgEFBQcwAYYYaHR0cDovL29jc3AuZ29kYWRkeS5jb20vMDIGA1UdHwQrMCkwJ6AloCOGIWh0dHA6Ly9jcmwuZ29kYWRkeS5jb20vZ2Ryb290LmNybDBGBgNVHSAEPzA9MDsGBFUdIAAwMzAxBggrBgEFBQcCARYlaHR0cHM6Ly9jZXJ0cy5nb2RhZGR5LmNvbS9yZXBvc2l0b3J5LzANBgkqhkiG9w0BAQsFAAOCAQEAWQtTvZKGEacke+1bMc8dH2xwxbhuvk679r6XUOEwf7ooXGKUwuN+M/f7QnaF25UcjCJYdQkMiGVnOQoWCcWgOJekxSOTP7QYpgEGRJHjp2kntFolfzq3Ms3dhP8qOCkzpN1nsoX+oYggHFCJyNwq9kIDN0zmiN/VryTyscPfzLXs4Jlet0lUIDyUGAzHHFIYSaRt4bNYC8nY7NmuHDKOKHAN4v6mF56ED71XcLNa6R+ghlO773z/aQvgSMO3kwvIClTErF0UZzdsyqUvMQg3qm5vjLyb4lddJIGvl5echK1srDdMZvNhkREg5L4wn3qkKQmw4TRfZHcYQFHfjDCmrw==" />
                    </characteristic>
                </characteristic>
            </characteristic>
        </characteristic>
        <characteristic type="APPLICATION">
            <parm name="APPID" value="w7" />
            <parm name="PROVIDER-ID" value="DEMO MDM" />
            <parm name="NAME" value="Microsoft" />
            <parm name="ROLE" value="4294967295" />
            <!-- Discriminator to set whether the client should do Certificate Revocation List checking. -->
            <parm name="CRLCheck" value="0"/>
            <parm name="CONNRETRYFREQ" value="6" />
            <parm name="INITIALBACKOFFTIME" value="30000" />
            <parm name="MAXBACKOFFTIME" value="120000" />
            <parm name="BACKCOMPATRETRYDISABLED" />
            <parm name="DEFAULTENCODING" value="application/vnd.syncml.dm+wbxml" />
            <characteristic type="APPAUTH">
                <parm name="AAUTHLEVEL" value="CLIENT"/>
                <parm name="AAUTHTYPE" value="DIGEST"/>
                <parm name="AAUTHSECRET" value="password1"/>
                <parm name="AAUTHDATA" value="B64encodedBinaryNonceInsertedHere"/>
            </characteristic>
            <characteristic type="APPAUTH">
                <parm name="AAUTHLEVEL" value="APPSRV"/>
                <parm name="AAUTHTYPE" value="BASIC"/>
                <parm name="AAUTHNAME" value="testclient"/>
                <parm name="AAUTHSECRET" value="password2"/>
            </characteristic>
        </characteristic>
        <characteristic type="Registry">
            <characteristic type="HKLM\Software\Windows\CurrentVersion\MDM\MachineEnrollment">
                <parm name="DeviceName" value="" datatype="string" />
            </characteristic>
        </characteristic>
        <characteristic type="Registry">
            <characteristic type="HKLM\SOFTWARE\Windows\CurrentVersion\MDM\MachineEnrollment">
                <!--Thumbprint of root certificate. -->
                <parm name="SslServerRootCertHash" value="2796BAE63F1801E277261BA0D77770028F20EEE4" datatype="string" />
                <!-- Store for device certificate. -->
                <parm name="SslClientCertStore" value="MY%5CSystem" datatype="string" />
                <!--  Common name of issued certificate. -->
                <parm name="SslClientCertSubjectName" value="7053C516-B495-4BA0-B1E8-D2D945!8A05C245F5106340BE2757E96D098C2A" datatype="string" />
                <!--Thumbprint of issued certificate. -->
                <parm name="SslClientCertHash" value="7E84A59091D74EE9132A0C248A38E2D58AA37659" datatype="string" />
            </characteristic>
            <characteristic type="HKLM\Security\Provisioning\OMADM\Accounts\037B1F0D3842015588E753CDE76EC724">
                <parm name="SslClientCertReference" value="My;System;7E84A59091D74EE9132A0C248A38E2D58AA37659" datatype="string" />
            </characteristic>
        </characteristic>
        <characteristic type="DMClient">
            <!-- In Windows 10, an enrollment server should use DMClient CSP XML to configure DM polling schedules. -->
            <characteristic type="Provider">
                <!-- ProviderID in DMClient CSP must match to PROVIDER-ID in w7 APPLICATION characteristics -->
                <characteristic type="TestMDMServer">
                    <parm name="UPN" value="UserPrincipalName@safeuem.com" datatype="string" />
                    <characteristic type="Poll">
                        <parm name="NumberOfFirstRetries" value="8" datatype="integer" />
                        <parm name="IntervalForFirstSetOfRetries" value="15" datatype="integer" />
                        <parm name="NumberOfSecondRetries" value="5" datatype="integer" />
                        <parm name="IntervalForSecondSetOfRetries" value="3" datatype="integer" />
                        <parm name="NumberOfRemainingScheduledRetries" value="0" datatype="integer" />
                        <!-- Windows 10 supports MDM push for real-time communication. The DM client long term polling schedule’s retry waiting interval should be more than 24 hours (1440) to reduce the impact to data consumption and battery life. Refer to the DMClient Configuration Service Provider section for information about polling schedule parameters.-->
                        <parm name="IntervalForRemainingScheduledRetries" value="1560" datatype="integer" />
                        <parm name="PollOnLogin" value="true" datatype="boolean" />
                    </characteristic>
                    <parm name="EntDeviceName" value="Administrator_Windows" datatype="string" />
                </characteristic>
            </characteristic>
        </characteristic>
    </wap-provisioningdoc>

    Still we got the same error:

    MDM Enroll: Failed to receive or parse certificate enroll response. Result: (Unknown Win32 Error code: 0x80192f76).

    We encapsulated 5 certificates in the provisioning data and here are what we labeled:

    1. GoDaddy CA ceritficate => System / Root

    2. GoDaddy Intermediate certificate (level 1) => System / CA

    3. GoDaddy Intermediate certificate (level 2) => System / CA

    4. *.safeuem.com (Our web certificate, with which we signed the client certificate) => System / CA

    5. Client certificate, (Subject: CN=7053C516-B495-4BA0-B1E8-D2D945!8A05C245F5106340BE2757E96D098C2A) => User / My

    Please advise, thanks!

    Wednesday, July 8, 2020 1:58 PM
  • Hi linwx1978, I set up a Windows-to-Windows scenario and collected traces to compare the XML with yours, but apparently my steps were different enough from yours that the messages are not similar. Could you let me know the details of all the steps taken on the client to enroll, from a clean standard OS install? I would like to know specifically which options are selected on which pages, etc. If you prefer to take this offline, you can email me at our DocHelp @microsoft .com alias (removing spaces). Thanks!

    Jeff McCashland | Microsoft Protocols Open Specifications Team

    Thursday, July 9, 2020 10:30 PM
    Moderator
  • Hi, Jeff,

    Please check dochelp@microsoft.com. My colleague Wang Zhu sent from 326599322 @qq.com records he captured on our client computer.

    Please let us know if you need credentials for experiment.

    Thanks

    Thursday, July 9, 2020 11:56 PM
  • Hi linwx1978,

    We have not received any email from Wang Zhu at the DocHelp alias. Please ask your colleague to send the information requested (detailed steps on the Windows client) without attachments. We will create a secure file transfer workspace for the issue to facilitate file exchange. 

    Thanks,


    Jeff McCashland | Microsoft Protocols Open Specifications Team

    Friday, July 10, 2020 6:41 PM
    Moderator
  • Hi, Jeff,

    Please check dochelp@microsoft.com again。I resend the email from 326599322 @qq.com

    Saturday, July 11, 2020 1:06 PM
  • Hi wangzhu1,

    I received the email and information. I will analyze the data and let you know what I find.

    Thanks,


    Jeff McCashland | Microsoft Protocols Open Specifications Team

    Saturday, July 11, 2020 3:37 PM
    Moderator
  • Forum update:

    This issue is now resolved. The HTTP payload did not have content-length header which was causing this issue.


    Regards, Obaid Farooqi

    Monday, July 27, 2020 6:13 AM
    Owner