certutil -importPFX NTE_BAD_KEYSET Keyset does not exist

Tamás Kiss 0 Reputation points
2023-05-11T09:04:04.84+00:00

Hello!

I have a problem with certutil on one Windows 10 workstation in the domain.

I use this command: certutil -user -f -p password -importPFX My c:\setup\client.p12

All of the workstations (except that one) completes this command successfully, even if the logged in user is local user of the PC or DOMAIN user, even if standard user or has administrator privileges.

But there is one machine which can not complete the command if any of the domain users logged in.

The error is:

Certutil: -importPFX command FAILED: 0x80090016 (-2146893802 NTE__BAD__KEYSET)

Certutil: The keyset does not exist

If i use the certification import wizard, every user can import that client.p12 file to it's personal store on that machine too.

If a local user or the domain administrator account logged in to the PC the certutil command completes successfully also on that machine.

I Googled this error for days, checked the permissions of folders but nothing different on that machine.

I would appreciate any suggestion. What should I check? What could cause this on that single machine?

Thank You!

Windows 10
Windows 10
A Microsoft operating system that runs on personal computers and tablets.
11,146 questions
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. Tamás Kiss 0 Reputation points
    2023-05-11T14:01:44.6933333+00:00

    This is the debug of certutil command on the problem machine:

    I used the DISM and SFC tools to restore the health of the system files as adviced in case of onecore exceptions, but no luck. The error still the same.

    Error

    0 comments No comments