[MS-MDE2]: Mobile Device Enrollment Protocol Version 2

  • Article

This topic lists Errata found in [MS-MDE2] since it was last published. Since this topic is updated frequently, we recommend that you subscribe to this RSS feed to receive update notifications.

Errata are subject to the same terms as the Open Specifications documentation referenced.

RSS

To view a PDF file of the errata for the previous versions of this document, see the following ERRATA Archives:

October 16, 2015 - Download

June 30, 2015 - Download

July 18, 2016 - Download

September 15, 2017 - Download

December 1, 2017 - Download

September 12, 2018 - Download

June 1, 2021 - Download

April 29, 2022 - Download

Errata below are for Protocol Document Version 12.0 - 2022/04/29.

Errata Published*

Description

2023/06/12

In Section 2.2.10 Faults: added CustomServerError message to the detail element table with product behavior note for applicability.

Changed from:

Subcode

Error

Description

HRESULT

DeviceCapReached

MENROLL_E_DEVICECAPREACHED

User already enrolled in too many devices. Delete or unenroll old ones to fix this error. The user can fix it without admin help.

80180013

DeviceNotSupported

MENROLL_E_DEVICENOTSUPPORTED

Specific platform or version is not supported. There is no point retrying or calling admin. User could upgrade device.

80180014

NotSupported

MENROLL_E_NOTSUPPORTED

Mobile device management generally not supported (would save an admin call).

80180015

NotEligibleToRenew

MENROLL_E_NOTELIGIBLETORENEW

Device is trying to renew but server rejects the request. Client might show notification for this if Robo fails. Check time on device. The user can fix it by re-enrolling.

80180016

InMaintenance

MENROLL_E_INMAINTENANCE

Account is in maintenance; retry later. The user can retry later, but they may need to contact the admin because they would not know when the problem was solved.

80180017

UserLicense

MENROLL_E_USERLICENSE

License of user is in bad state and blocking the enrollment. The user needs to call the admin.

80180018

InvalidEnrollmentData

MENROLL_E_ENROLLMENTDATAINVALID

The server rejected the enrollment data. The server may not be configured correctly.

80180019

Changed to:

Subcode

Error

Description

HRESULT

DeviceCapReached

MENROLL_E_DEVICECAPREACHED

User already enrolled in too many devices. Delete or unenroll old ones to fix this error. The user can fix it without admin help.

80180013

DeviceNotSupported

MENROLL_E_DEVICENOTSUPPORTED

Specific platform or version is not supported. There is no point retrying or calling admin. User could upgrade device.

80180014

NotSupported

MENROLL_E_NOTSUPPORTED

Mobile device management generally not supported (would save an admin call).

80180015

NotEligibleToRenew

MENROLL_E_NOTELIGIBLETORENEW

Device is trying to renew but server rejects the request. Client might show notification for this if Robo fails. Check time on device. The user can fix it by re-enrolling.

80180016

InMaintenance

MENROLL_E_INMAINTENANCE

Account is in maintenance; retry later. The user can retry later, but they may need to contact the admin because they would not know when the problem was solved.

80180017

UserLicense

MENROLL_E_USERLICENSE

License of user is in bad state and blocking the enrollment. The user needs to call the admin.

80180018

InvalidEnrollmentData

MENROLL_E_ENROLLMENTDATAINVALID

The server rejected the enrollment data. The server may not be configured correctly.



80180019

CustomServerError

MENROLL_E_CUSTOMSERVERERROR

The server responded with a custom error string, see DeviceManagement-Enterprise-Diagnostics for details. In this case, s:reason/s:text would show as the server message.<14>

80180032

<14> Section 2.2.10: The CustomServerError is applicable to Windows 10 v20H2 operating system and later and to Windows 11 operating system version 1 and later.

2022/12/30

<14> Section 3.1.4.1.3.1 DiscoveryRequest: Product note <14> for RequestVersion v5.0 added supported in Windows 10 v2004 (v20H1) 2023 1C patch and later.

Changed From:

RequestVersion value 5.0 is supported only in the Windows 11 (version 1) 2022 10C patch and later.

Changed To:

RequestVersion value 5.0 is supported in Windows 11 (version 1) 2022 10C patch and later and supported in Windows 10 v2004 (v20H1) 2023 1C patch and later.

In the following sections' product notes for EnrollmentVersion v5.0 added supported in Windows 10 v2004 (v20H1) 2023 1C patch and later.

<15> Section 3.1.4.1.3.2 DiscoveryResponse

<16> Section 3.3.4.1.1.2 GetPoliciesResponse

<17> Section 3.3.4.1.1.2 GetPoliciesResponse

<20> Section 3.4.4.1.1.1.1 RequestSecurityToken using Federated Authentication

<23> Section 3.4.4.1.1.1.2 RequestSecurityToken using Certificate Authentication

<26> Section 3.4.4.1.1.1.3 RequestSecurityToken using On-Premise Authentication

Changed From:

The EnrollmentVersion value 5.0 is supported only in the Windows 11 (version 1), 2022 10C patch and later, see section 3.1.4.1.3.2.

Changed To:

The EnrollmentVersion value 5.0 is supported in Windows 11 (version 1), 2022 10C patch and later and supported in Windows 10 v2004 (v20H1) 2023 1C patch and later. See section 3.1.4.1.3.2.

2022/10/03

<14> Section 3.1.4.1.3.1 DiscoveryRequest, updated product note with RequestVersion  v5.0 support from Windows 11 (version 2) to Windows 11 (version 1) 2022 10C patch and later.

Changed From:

RequestVersion value 5.0 is supported only in the Windows 11, version 22H2 operating system and later.

Changed To:

RequestVersion value 5.0 is supported only in Windows 11 (version 1), 2022 10C patch and later.

In the following sections updated the product notes with EnrollmentVersion v5.0 support from Windows 11 (version 2) to Windows 11 (version 1) 2022 10C patch and later.

<15> Section 3.1.4.1.3.2 DiscoveryResponse

<16> Section 3.3.4.1.1.2 GetPoliciesResponse

<17> Section 3.3.4.1.1.2 GetPoliciesResponse

<20> Section 3.4.4.1.1.1.1 RequestSecurityToken using Federated Authentication

<23> Section 3.4.4.1.1.1.2 RequestSecurityToken using Certificate Authentication

<26> Section 3.4.4.1.1.1.3 RequestSecurityToken using On-Premise Authentication

Changed From:

EnrollmentVersion value 5.0 is supported only in Windows 11 v22H2 and later, see section 3.1.4.1.3.2.

Changed To:

EnrollmentVersion value 5.0 is supported only in Windows 11 (version 1), 2022 10C patch and later, see section 3.1.4.1.3.2.