locked
Problem with Enrollment, the log show success but show next log message "uninstalling enrollment cert for OMADM session." RRS feed

  • Question

  • Hi.

    I am trying enroll a windows phone 8.1 with my MDM server but the enrollment generate the next error "[MDM Enroll End] Error HRESULT: 0x80093102". These are the "wap-provisioning", "RSTR Message" and device log.

    wap-provisioning

    <?xml version="1.0" encoding="utf-8"?>
    <wap-provisioningdoc version="1.1">
      <characteristic type="CertificateStore">
        <characteristic type="Root">
          <characteristic type="System">
            <characteristic type="A50200E2DC94742370467F6261C46726C0266525">
              <parm name="EncodedCertificate" value="MIIJ6gIBAzCCCaYGCSqGSIb3DQEHAaCCCZcEggmTMIIJjzCCBggGCSqGSIb3DQEHAaCCBfkEggX1MIIF8TCCBe0GCyqGSIb3DQEMCgECoIIE/jCCBPowHAYKKoZIhvcNAQwBAzAOBAgBihcnDrGmUgICB9AEggTYgFP2DgDazmcCQpc2EcMdlrs4sw2RThBMlhN9e7w5KNFRv8yu6UslEp50QI8VIr235Oqrvt3yLUedp/RcKXhpjQWfo79WVJTXqT4OwHrCkASz8HbV3/7EkDdHhQcPWgZUu3TOHvFcuO3IS5dxn+OuzoKm5r99fpkn55oMOF884scE0vzPdtR4VtH/ANe2yWaQiuoTp5PZ6tEfp7lWT+TcqQDsFQ9hk/1tZWNbUpLybz/7771HN0If+3U4eiL9Hfyja3UdOLY9gjUOzH/5E8mo4L54wq/ZmVVrOGW4hX46QW2dnOKXN0W1+tf/pESbmai/fOg8VHO6jCnk0L8IX2ZfME9GUjkc0I+S7V3EZXdK7mPxqQOOU5+P6uaNBhnPMcrue5fVLd2R3xb348OQxhT1Wj+UPeyLStutYVuO7QhbR0/xjBRLJGGggTLVtQgkvSKALaPI5kuChFKe/iqHpdA6LQRFt3FcXXjEYH5GwYl/A0EYC3dMoexn92B09GtThcmYrD7l2fnE2aNJ6aah9oouOVXHWz4PmRWj9+8+NEjsmPnQ1QTqdFDWgThIE0BGNYH0q/QWk29/rhBesvJRMARE47d35wvI3Ce0ZBgZZq59qaEiXXFlfE4H43DlPXbZbNtMKmBYTCohzrDbS0xa2x6TDcGE7Tj58viEi6ts91S3jM1DgD/tpW5OhArFHzkahOeZkNNROTBcl4LAdOISiFGSEofBxhPjNmOf2nmRBXwcCXFCkBTnUmMct5VLtkIs8WD58tqk47nKelIYjRdDbJvgMt7Dqqzq7FjQlRHJHQVU/KaGdjE/lay6xGIap+zyYzHl1LFOWUCr985weBO283iRJIxrcG5qEuRGonMHjLUAItOYFhpMFulCpjVD2KEK82DDVYVhbUd95/PsdHiREsM/V+4upg31ASiHHZZoW+C61iYkPygAfV6gxwIRp26PC+JyUF1FDnEy8+PUHsvOFWH1FtoX7enMrc44NmcdzhV4Z3DWE6oE8WPKe56tydBRMSLf08+SgQRd/aram+7ePML/fFj7bscipFb+AF1SvqOuYtQo5FKCXmcOYimcC1l6hm5MGJSPjAJqsfIxMbH5bG++mNI9C+qMwB1frevi9gJ/V3WHa42MeRetEWGVt4Yl543BzLST/mnOg9EIrvZ19DacbGcG7xpAvd45iBrvjom/56Vma51QpKsYuc8Ud+Zp9XIlNrolldEjuiCjl3KiMj7etbAD4VhO1mQpiPyw7m1dpUllEOBiFZ8XWc+ADfEMGsfhOtE6SohDQxaabTjJRe/iIQd/MSEghjeENlzLeQHYEbA06am5m3hrDUYDaoE8i301v3ArZfnTJ8pick0312ah0prGOK1s2ye1lJtVKmqICaImOziqlhe/x3ACmfPyF4ukV0TB8jE9m1+Cnz5cE21uIvF69vCw+veAorqOo8F+uw9Jjck4zE/sAVuDdq5m7csxQYXoYuZSzpoQZb9LbeqPq+CNXkN2lzxLmWaavdChpLUnICRTtYZP1VcUnyNlPVof0oy1ai3LiSxR0pcOcuZ+ueJEQe9mujHNxnVlOj79IE0uNccFoNWDO60gR0CAJyhDwvSIaWXssplB6a5NW7xHeibasyTq1Jb/Bp9Bbsy44Y47DVobvgogrzGB2zATBgkqhkiG9w0BCRUxBgQEAQAAADBdBgkrBgEEAYI3EQExUB5OAE0AaQBjAHIAbwBzAG8AZgB0ACAAUwB0AHIAbwBuAGcAIABDAHIAeQBwAHQAbwBnAHIAYQBwAGgAaQBjACAAUAByAG8AdgBpAGQAZQByMGUGCSqGSIb3DQEJFDFYHlYAUAB2AGsAVABtAHAAOgBlADEAMgAxAGIAYwBiAGQALQAxADkAMwA4AC0ANAAxAGEAZQAtAGIAOABlAGQALQA4AGIANgBmADEANwAxADMAZQBiADEAOTCCA38GCSqGSIb3DQEHBqCCA3AwggNsAgEAMIIDZQYJKoZIhvcNAQcBMBwGCiqGSIb3DQEMAQYwDgQIpOKhPoKgDOICAgfQgIIDOBiSojtgEQuNWlwanjU3c3IUsvemKG7ZsnIqJd209MsolQQHKqYc9SVWHE/ZuNCwxGFihW34QZU/mwoX8Hodcrj2nvlNOtpuiEWwd7+Tu/tuunFSlBL70Egfo1ESezZf0AwZxd516cb+1894OJJGZTkfp/eeGE1v+LY4OwSfgt1nYPp2qJ+KbpxGgX8Zsk9AzR4+nqdnjkyCHgyxJZKkYIlBp9nyFEcHpW4TyC66hmby43l3JMvKybPHgmBZWm1Bkp5XnhDWULfAMOOHsuhrAwej9uao9Ps1yO67y2GP+67LGEyw3YJ9KDv1zDeWsjVqe5OKUWQmaHImYxTDBmhRzi+kpPf7Dh3wBXCGaJvHT3mFxhx4T9O4IlYvbIZJDiKR/eP+mLaXpdliLkYhR4mBnjyTseDa3cjY0VsydKlcypcbshyKnPfUA2DFCP1ULqy2coWDQSYvYFA9J8ggJp6JaH/XnF883yfKlyexK1djVZrjM3tu03GOs0IVz2vd6UfEkcwJyyxrHoxOKLBhwmCfTGQoeZC2Bii0XWbauyuxbmD9jRHdU2OlXPW4ew9oTNY0/E88/ItbyxLK7WxuCOBdfpVfrl3/yVReNCabj84IbWJlbGyOtFPV5jO/o5F0fmxsdgRqHgBzOXXEXjanqYrFsGEhreDxBNxJniNZ/wfngd8wKU8BYQYYMFteeCApHuSTryf6yuimD+MByf9Vs2tMTR0Ps/C7qIBm4CeN3gQXE5vFLslTLBH11sz4yvNMDsS6ynuARFRe/Z31OsZptIjvb4kbJ3DS/G/3BJnNQSwtVz+i7F3YwdDWJ9BplVr67WZOyDpTS8rIU+OQsqLMQrh1d8LKBWxIc77F5iazhNnhhveVShakkgyI4f3wR/8K2jYWUYAzlf+Jy8MzKs2nXut8vKLl35R4Vh+3L7RHMYDP+Z9ultpHpHeNDSYMNBt3VKupQyOwRHKs7cxM4EtCHvdHApikTykEv1VURJ2IBFYMY+quIGQizqg+8ZLZmFrPwNyGVTLYx+vlOpcaH6BXDYlN0g6F1EuuJj9vxZKx5pwaCmgxps5BdsjR7kZDU+tJxoVrXn+pKIgbFyMLMDswHzAHBgUrDgMCGgQUMWMzLLB7BCZ/VuwdlnMRGik05xUEFIiJS4E4jj+7xARx8wa+WaRHW45DAgIH0A==" />
            </characteristic>
          </characteristic>
        </characteristic>
        <characteristic type="My">
          <characteristic type="User">
            <characteristic type="F9B35B081E1205B68A7FC51DD42BE3C5426ED84F">
              <parm name="EncodedCertificate" value="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" />
            </characteristic>
            <characteristic type="PrivateKeyContainer" />
            <!-- This tag must be present for XML syntax correctness. -->
          </characteristic>
          <characteristic type="WSTEP">
            <characteristic type="Renew">
              <parm name="ROBOSupport" value="true" datatype="boolean" />
              <parm name="RenewPeriod" value="60" datatype="integer" />
              <parm name="RetryInterval" value="4" datatype="integer" />
            </characteristic>
          </characteristic>
        </characteristic>
      </characteristic>
      <characteristic type="APPLICATION">
        <parm name="APPID" value="w7" />
        <parm name="PROVIDER-ID" value="TestMDMServer" />
        <parm name="NAME" value="Microsoft" />
        <parm name="ADDR" value="https://mdm.arandasoft.com/julio/DummyServices/WindowsPhone.ashx" />
        <parm name="CONNRETRYFREQ" value="6" />
        <parm name="INITIALBACKOFFTIME" value="30000" />
        <parm name="MAXBACKOFFTIME" value="120000" />
        <parm name="BACKCOMPATRETRYDISABLED" />
        <parm name="DEFAULTENCODING" value="application/vnd.syncml.dm+wbxml" />
        <parm name="SSLCLIENTCERTSEARCHCRITERIA" value="Subject=CN%3DMDMLocalClientCert&amp;Stores=My%5CUser" />
        <characteristic type="APPAUTH">
          <parm name="AAUTHLEVEL" value="CLIENT" />
          <parm name="AAUTHTYPE" value="DIGEST" />
          <parm name="AAUTHSECRET" value="123456" />
          <parm name="AAUTHDATA" value="MTIzNDU2" />
        </characteristic>
        <characteristic type="APPAUTH">
          <parm name="AAUTHLEVEL" value="APPSRV" />
          <parm name="AAUTHTYPE" value="BASIC" />
          <parm name="AAUTHNAME" value="test8" />
          <parm name="AAUTHSECRET" value="123456" />
        </characteristic>
      </characteristic>
      <characteristic type="DMClient">
        <characteristic type="Provider">
          <characteristic type="TestMDMServer">
            <characteristic type="Poll">
              <parm name="NumberOfFirstRetries" value="8" datatype="integer" />
              <parm name="IntervalForFirstSetOfRetries" value="15" datatype="integer" />
              <parm name="NumberOfSecondRetries" value="5" datatype="integer" />
              <parm name="IntervalForSecondSetOfRetries" value="3" datatype="integer" />
              <parm name="NumberOfRemainingScheduledRetries" value="0" datatype="integer" />
              <parm name="IntervalForRemainingScheduledRetries" value="1560" datatype="integer" />
            </characteristic>
            <parm name="EntDeviceName" value="Administrator_WindowsPhone" datatype="string" />
          </characteristic>
        </characteristic>
      </characteristic>
    </wap-provisioningdoc>


    RSTR Message

    <?xml version="1.0" encoding="utf-8"?>
    <s:Envelope xmlns:s="http://schemas.xmlsoap.org/soap/envelope/" xmlns:a="http://www.w3.org/2005/08/addressing" xmlns:u="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd">
      <s:Header>
        <Action s:mustUnderstand="1">http://schemas.microsoft.com/windows/pki/2009/01/enrollment/RSTRC/wstep</Action>
        <a:RelatesTo>urn:uuid:81a5419a-496b-474f-a627-5cdd33eed8ab</a:RelatesTo>
        <o:Security s:mustUnderstand="1" xmlns:o="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd">
          <u:Timestamp u:Id="_0">
            <u:Created>2013-06-18T16:20:59.420Z</u:Created>
            <u:Expires>2015-06-20T00:37:59.420Z</u:Expires>
          </u:Timestamp>
        </o:Security>
      </s:Header>
      <s:Body>
        <RequestSecurityTokenResponseCollection xmlns="http://docs.oasis-open.org/ws-sx/ws-trust/200512">
          <RequestSecurityTokenResponse>
            <TokenType>http://schemas.microsoft.com/5.0.0.0/ConfigurationManager/Enrollment/DeviceEnrollmentToken</TokenType>
            <RequestedSecurityToken>
              <BinarySecurityToken ValueType="http://schemas.microsoft.com/5.0.0.0/ConfigurationManager/Enrollment/DeviceEnrollmentProvisionDoc" EncodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd#base64binary" xmlns="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd">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</BinarySecurityToken>
            </RequestedSecurityToken>
            <RequestID xmlns="http://schemas.microsoft.com/windows/pki/2009/01/enrollment">0</RequestID>
          </RequestSecurityTokenResponse>
        </RequestSecurityTokenResponseCollection>
      </s:Body>
    </s:Envelope>

    Log from Windows Phone Developer Power Tools (8.1)

               

    Provider Id is https://mdm.arandasoft.com/julio/DummyServices/Discovery.svc , 0, 504, https://mdm.arandasoft.com/julio/DummyServices/Discovery.svc
    Provider Id is TestMDMServer 
    Provider Id is TestMDMServer 
    [MDM Enroll Start] emailaddress: test8@arandasoft.com; servername: https://mdm.arandasoft.com/julio/DummyServices/Discovery.svc; password: Given; domainusername: NULL.
    Successfully discovered server (mdm.arandasoft.com).
    Processing successful response from discovery enpoint callback. 
    GetEndpointsFromResponse() uses authentication mode (OnPremise). 
    OnPremise authentication mode is used. 
    Policy service URL (https://mdm.arandasoft.com/julio/DummyServices/DevicePolicyWebService.svc) and  enrollment service URL (https://mdm.arandasoft.com/julio/DummyServices/DeviceEnrollmentWebService.svc) are used. 
    GetPolicyFromResponse() uses hash algorithm (1.3.14.3.2.29). 
    Function NCryptOpenKey failed with result (0x80090016). 
    Soap Request Message: <s:envelope xmlns:s="http://www.w3.org/2003/05/soap-envelope" xmlns:a="http://www.w3.org/2005/08/addressing" xmlns:u="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd" xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd" xmlns:wst="http://docs.oasis-open.org/ws-sx/ws-trust/200512" xmlns:ac="http://schemas.xmlsoap.org/ws/2006/12/authorization">
    <s:header>
    <a:action s:mustunderstand="1">http://schemas.microsoft.com/windows/pki/2009/01/enrollment/rst/wstep</a:action>
    <a:messageid>urn:uuid:0d5a1441-5891-453b-becf-a2e5f6ea3749</a:messageid>
    <a:replyto>
    <a:address>http://www.w3.org/2005/08/addressing/anonymous</a:address>
    </a:replyto>
    <a:to s:mustunderstand="1">https://mdm.arandasoft.com/julio/dummyservices/deviceenrollmentwebservice.svc</a:to>

    Soap Response Message: <s:envelope xmlns:s="http://schemas.xmlsoap.org/soap/envelope/" xmlns:a="http://www.w3.org/2005/08/addressing" xmlns:u="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd">
      <s:header>
        <action s:mustunderstand="1">http://schemas.microsoft.com/windows/pki/2009/01/enrollment/rstrc/wstep</action>
        <a:relatesto>urn:uuid:81a5419a-496b-474f-a627-5cdd33eed8ab</a:relatesto>
        <o:security s:mustunderstand="1" xmlns:o="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd">
          <u:timestamp u:id="_0">
            <u:created>2013-06-18t16:20:59.420z</u:created>
            <u:expires>2015-06-20t00:37:59.420z</u:expires>
          </u:timestamp>
        </o:security>
      </s:header>
      <s:body>
        <requestsecuritytokenresponsecollection xmlns="http://docs.oasis-open.org/ws-sx/ws-trust/200512">
          <requestsecuritytokenresponse>
            <tokentype>http://schemas.microsoft.com/5.0.0.0/configurationmanager/enrollment/deviceenrollmenttoken</tokentype>
            <requestedsecuritytoken>

    Enrollment succeeded with server (mdm.arandasoft.com).
    [MDM Cert Installer Start] Install cert in app container. 
    [MDM Cert Installer] Uninstalling enrollment cert for OMADM session. 
    [MDM Cert Installer End] Success 
    [MDM Enroll End] Error HRESULT: 0x80093102 

    Help me please to discover the mistake with my enrollment.

    Thanks in advance for your attention and cooperation provided.


    Thursday, February 5, 2015 12:06 AM

Answers

  • The error 0x80093102 is "ASN1 Unexpected end of data" ...

    It looks like a problem with the contents of your Root\System certificate.  It looks like it's encrypted... this should just be the public key export of the server certificate which signed the client certificate you are trying to install. 


    Eric Fleck, Windows Store and Windows Phone Developer Support. If you would like to provide feedback or suggestions for future improvements to the Windows Phone SDK please go to http://wpdev.uservoice.com/ where you can post your suggestions and/or cast your votes for existing suggestions.

    • Marked as answer by jgaleanog Thursday, February 12, 2015 3:03 PM
    Monday, February 9, 2015 11:04 PM

All replies

  • The error 0x80093102 is "ASN1 Unexpected end of data" ...

    It looks like a problem with the contents of your Root\System certificate.  It looks like it's encrypted... this should just be the public key export of the server certificate which signed the client certificate you are trying to install. 


    Eric Fleck, Windows Store and Windows Phone Developer Support. If you would like to provide feedback or suggestions for future improvements to the Windows Phone SDK please go to http://wpdev.uservoice.com/ where you can post your suggestions and/or cast your votes for existing suggestions.

    • Marked as answer by jgaleanog Thursday, February 12, 2015 3:03 PM
    Monday, February 9, 2015 11:04 PM
  • Hi,

    Im facing difficulties in certificate service step for Federated enrollment.

    https://social.msdn.microsoft.com/Forums/en-US/os_windowsprotocols/thread/cecd9d35-d8d0-48d9-a058-29fbe78bef7d/#cecd9d35-d8d0-48d9-a058-29fbe78bef7d

    Any help would be appreciated :)

    Tuesday, March 8, 2016 11:10 AM