Share via

Configuration Policy deployment fails on device

NM 41 Reputation points
2024-06-22T22:10:52.15+00:00

Hello Experts,

I am new to Intune and have created a PKCS import certificate configuration policy in Intune and have deployed it to a user group. I am trying to get this policy installed on a Windows 11 machine but it's failing every time. Tried it with multiple new machines. Tried to check the Intune management extension logs but they were not created on the system, checked the event logs and in DeviceManagement-Enterprise-Diagnostics-Provider I did not find any error related to the configuration policy. Below is the error I am getting -

technet

Policy details here -

technet1

I tried it on 2 different tenants and on multiple machines but getting same error. Experts please advise.

Found this error on client machine -

Failed to import PFX Certificate for AzureAD\ Flags: 0x00000006 Provider: Microsoft Software Key Storage Provider Container: N/A Process: omadmclient.exe Cannot find the requested object. 0x80092009 (-2146885623 CRYPT_E_NO_MATCH)

Thanks.

Microsoft Intune
Microsoft Intune
A Microsoft cloud-based management solution that offers mobile device management, mobile application management, and PC management capabilities.
4,666 questions
0 comments

2 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Xenia-MSFT 790 Reputation points Microsoft Vendor
    2024-06-24T02:13:29.9166667+00:00

    @NM Thanks for posting in our Q&A.

    For this issue, it is suggested to try the following steps to troubleshoot:

    1.Confirm that the Profile Configuration settings are correct. This is the most common problem area. Make sure that Certificate Authority and Certificate Authority Name are correct.

    2.Check NDESConnector_Date.svclog on the Intune Certificate Connector computer for errors. By default, this is found in C:\Program Files\Microsoft Intune\NDESConnectorSvc\Logs\Logs.

    3.Check the MS Certificate Authority for errors. Specifically, check the Failed Requests folder and look for errors

    4.Check the C:\Program Files\Microsoft Intune\PfxRequest folders for any failed or stuck processing PFX requests.

    For more details, please refer to the following article:

    https://techcommunity.microsoft.com/t5/intune-customer-success/support-tip-configuring-and-troubleshooting-pfx-pkcs/ba-p/516450

    Hope it will give you some ideas.

    If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".

    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

  2. NM 41 Reputation points
    2024-06-25T13:58:28.6466667+00:00

    @Xenia-MSFT -Any further suggestion on this?