Hello once again,
I'm trying to get things working with the LDMG on our network. I have my core server and MG set up, but my Windows Vista lab client can't get a certificate from the Core. I get a "Failed to retrieve certificate" error. I use the brokerconfig.exe to start a connection.
So far, I have a working core and MG. I posted a certificate from the core onto the MG. The connection from the client over the internet to the gateway does function. When I start the brokerconfig.exe, fill in the info and start a test I get the following result:
15:28.780 Attempting Direct HTTP connection to host CORESERVER:80
15:28.780 Starting HTTP session with host CORESERVER:80, proxy "", and proxy user ""
15:31.089 Unable to resolve host CORESERVER address 255.255.255.255
15:31.089 Direct connection failed 6 Name resolution error
15:31.089 Attempting managment gateway connection at host xxx.mn-web.eu and address xxx.xxx.xxx.xxx
15:31.089 Starting HTTPS session with host xxx.xxx.xxx.xxx, proxy "", and proxy user ""
15:31.089 Connecting to address xxx.xxx.xxx.xxx
15:31.416 Waiting for link connection to core through managment gateway
15:31.416 Begining link request
15:31.416 HTTPS Request: POST /services/link?org=Mn%20Services
15:31.416 Waiting for match response
15:31.416 Waiting for HTTPS response
15:31.448 HTTPS response finished status 201 description Created
15:31.448 Creating session from client computer through managment gateway to core computer
15:31.463 Starting long session client
15:31.494 Match request completed 0 Success
15:31.494 Link to core successful
15:31.494 HTTPS Request: POST /landesk/managementsuite/core/core.secure/BrokerCertificateRequest.asmx
15:31.494 Waiting for HTTPS response
15:31.526 HTTPS response finished status 200 description OK
This seems to be ok.
When I push the Send button however, I get the error.
I first thought this was a problem on my Core or IIS server. However, when I check my Client Certificates on the core server in Configure -> Management Gateway -> tab Certificates -> Manage client certificates I can see the client in the list of computers who are granted a certificate by the core.
I checked the local folders and found that, as long as the brokerconfig.exe tries to get a certificate, the files broker.csr and broker.key are temporary present in the C:\Program Files\LANDesk\Shared Files\cbaroot\broker folder. When I get the error from the brokerconfig.exe, the files are removed. I also checked the C:\Program Files\LANDesk\Shared Files\cbaroot\certs folder. No certificate is placed there.
I thought It could be a permission restriction in Vista on one of the folders above, however, when I log in as an administrator with Full Control on these folders, I don't get a certificate either.
I checked every troubleshooting guide on these forums and tried almost every answer but I still can't get a certificate from the core.
Can someone help me with this. I'm getting pretty frustrated about this...
Thanks in advance.