• ×
    Information
    Need Windows 11 help?
    Check documents on compatibility, FAQs, upgrade information and available fixes.
    Windows 11 Support Center.
  • post a message
  • ×
    Information
    Need Windows 11 help?
    Check documents on compatibility, FAQs, upgrade information and available fixes.
    Windows 11 Support Center.
  • post a message
Guidelines
Are you having HotKey issues? Click here for tips and tricks.
Locked

‎05-15-2019 09:57 AM

HP Recommended
Product: T530

Hello all, I continually receive the below error when trying to request a certificate through SCEP manager on the thin client.

 

HP DM is version 4.7 SP10

HP T530 is OS version T7x70015

 

2019-05-15 11:19:47 ErrorCode: 30720, Error Info: ../../Task/common/TaskScep.cpp@89: The ThinPro SCEP component probably only supports 1024 key length. ../../Task/common/TaskScep.cpp@88: Wed May 15 11:19:24 EDT 2019 SCEP enroll result: SCEP Client configuration error

 

Communication goes through fine, NDES supports 2048. SCEP Component should support higher than 1024, so not sure why this error shows. 

8 REPLIES 8

‎06-25-2019 06:32 AM

HP Recommended

Updating for visibility...

Was this reply helpful? Yes No

‎06-26-2019 12:51 AM

HP Recommended

You might need to update ThinPro image or the SCEP component on it to get the support for key length above 1024.

I am an HPI Employee.
My opinions are my own and do not express those of HPI.
**Light the thumb up if you like my post**
Was this reply helpful? Yes No

‎06-26-2019 12:55 AM

HP Recommended

And this error info can mean something else.  Please verify the parameters including the URL and challenge code on a sample thin client before sending a task.

I am an HPI Employee.
My opinions are my own and do not express those of HPI.
**Light the thumb up if you like my post**
Was this reply helpful? Yes No

‎06-26-2019 01:55 PM

HP Recommended

All of my thin clients are sample thin clients at this point, SCEP is not working with:

 

ThinPro OS T7X710015, T7X710018

SCEP 1024, 2048

HPDM 4.7 SP9, SP10 or 5.0

Was this reply helpful? Yes No

‎06-26-2019 06:23 PM

HP Recommended

Please take one thin client and try locally with the SCEP component to verify the configuration works before sending via an HPDM task.

I am an HPI Employee.
My opinions are my own and do not express those of HPI.
**Light the thumb up if you like my post**
Was this reply helpful? Yes No

‎06-27-2019 06:13 AM

HP Recommended

Sorry for not clarifying, I've done that as well. I usually try both

Was this reply helpful? Yes No

‎06-27-2019 07:56 PM

HP Recommended

1. Please confirm what status do you see on a thin client when trying to enroll.  You can find it at the bottom of the dialog of SCEP Manager as shown in the attached picture with the red box.  I guess it can be the same as what you see in the task log: 

SCEP Client configuration error

2. With NDES there is more than one URL during preparation.  Please refer to the whitepaper WP_SCEP-Tutorial_HPDM-4.7.pdf and make sure the URL is the one to enroll.  It can be like http://NDES-address/certsrv/mscep/

I am an HPI Employee.
My opinions are my own and do not express those of HPI.
**Light the thumb up if you like my post**
Was this reply helpful? Yes No

‎09-24-2019 02:05 PM

HP Recommended

Thanks for the help here...

I was able to push scep cert to the device. What if I want to use a machine cert here? Is there additional steps I need for this to authenticate? 

The 802.1x appears as if it's trying to work with a client cert

Was this reply helpful? Yes No
Warning
Be alert for scammers posting fake support phone numbers and/or email addresses on the community.
If you think you have received a fake HP Support message, please report it to us by clicking on "Flag Post".
† The opinions expressed above are the personal opinions of the authors, not of HP. By using this site, you accept the Terms of Use and Rules of Participation.
Didn't find what you were looking for? Ask the community
† The opinions expressed above are the personal opinions of the authors, not of HP. By using this site, you accept the <a href="https://www8.hp.com/us/en/terms-of-use.html" class="udrlinesmall">Terms of Use</a> and <a href="/t5/custom/page/page-id/hp.rulespage" class="udrlinesmall"> Rules of Participation</a>.