This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(188.79999999999998, 2%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMB%3C/text%3E%3C/svg%3E)
When i try to assign a new oauth certificate i receive this error: Error: The specified directory service attribute or value does not exist.
Error: The specified directory service attribute or value does not exist.
▼ Details
└ Type: COMException
└ ▼ Stack Trace
└ at System.DirectoryServices.DirectoryEntry.Bind(Boolean throwIfFail)
at System.DirectoryServices.DirectoryEntry.Bind()
at System.DirectoryServices.DirectoryEntry.get_IsContainer()
at System.DirectoryServices.DirectoryEntries.ChildEnumerator..ctor(DirectoryEntry container)
at Microsoft.Incubation.Crypto.GroupKeys.ADRepository.EnumerateKeys()
at Microsoft.Incubation.Crypto.GroupKeys.DKMBase.FindNewestKey()
at Microsoft.Incubation.Crypto.GroupKeys.DKMBase.GetCurrentKeyAndUpdate(KeyPolicy& keyPolicy)
at Microsoft.Incubation.Crypto.GroupKeys.DKMBase.Protect(MemoryStream plaintext)
at Microsoft.Rtc.Management.Internal.KeyManagement.GroupKeyWrapper.Encode(Byte[] inBytes)
at Microsoft.Rtc.Management.Deployment.Core.Certificate.SetCMSCertificate(IScopeAnchor scope, X509Certificate2 foundCert, X509Certificate2Collection certs, Nullable`1 effectiveTime, Boolean isRoll)
at Microsoft.Rtc.Management.Deployment.Core.Certificate.SetCMSCertificate(IScopeAnchor scope, String thumbprint, Nullable`1 effectiveTime, Boolean isRoll)
at Microsoft.Rtc.Management.Deployment.Tasks.SetCertificateTask.Action()
at Microsoft.Rtc.Management.Internal.Utilities.LogWriter.InvokeAndLog(Action action)
3/12/2021 2:12:23 PM Error
└ Error: An error occurred: "System.Runtime.InteropServices.COMException" "The specified directory service attribute or value does not exist.
I have no clue what the issue is here. Can someone help me out? We are running Skype for Business server 2015 CU11.
Do you mean that you are trying to renew the certificates in Skype for Business server 2015?
Do you check if the information is correct in Certificate Request page?
If the OAuthTokenIssuer certificate is assigned properly in other servers, you just need to restart the “Skype for Business Server Replica Replicator Agent” service on other servers.
If the response is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.
Hello @Sharon Zhao-MSFT ,
Thanks for you reply.
no, the renewal was succesfull. But after that you assign the certificate and that process fails. I compared the old and the new certificate and they are exactly the same (Ecept the validity of course).
Perhaps, you could try to use set-certificate command to assign certificate.
@Mark Bolten
Do you have any update on this thread now?
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(112.00000000000001, 25%, 20%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ES%3C/text%3E%3C/svg%3E)
Hi,
I have a similar error here: https://learn.microsoft.com/en-us/answers/questions/314771/assigning-skype-for-business-2015-outh-cert-fail.html
@Mark Bolten - Did you manage to assign the Oauth cert?
I get the same (useless) suggestions in my thread as you do.
This is how I solved it, this may help you as well. Just make sure you have a good backup in place, just in case.
This will restore the corrupted AD objects.
New certificate is in place. If you have several Front-Ends - reboot them.
Thanks for your kindly sharing.
Please try the solution of Sebasian-1981. If it works for you, please remember to accept this suggestion as answer. It will benefit many people in the same situation. Thanks for your understanding.
@Mark Bolten
Do you have any update now?