locked
Many Problems with Communicator, School District needs dire help, previous employee left us hanging! RRS feed

  • Question

  • I am the new hire and we are in our second week of school. I spent the majority of the day yesterday trying to figure our the certificates and various other setups. I finally got all services to start, but on the client side I get the message, "there was a problem verifying cert. from server" I have looked at all the ocs certificates and they are all enabled for all purposes. He was a guy who loved World of Warcraft so many of the servers were named after knights and kings and queens. :-) So before I arrived an outside company was hired to make it more streamlined and basically had to redo everything. So now instead of our ocs server being named excalibur.us.local it is now ocs.us.local. He had an fqdn and edge server setup as excalibur.us.local and i removed that from the global settings. Didn't seem to effect it in any way, but I did however create one named properly ocs.us.local.

    The front end server log has several errors and they are as follows:

    "process rtchost(4456) did not recieve cert. from client.

    "process avmcusvc(4968) failed to send health notif. to the mcu factor at https://ocs.us.local:444\liveserver\mcufactory

    "that same error as above with differernt file names. Datamcusvc, acpmcusvc

    On the front end tab all services are running. Sip ip address shows all port 5061 transport is mtls

    im conf. ip =all port 5062

    We only use this for IM. So the teachers can communicate with one another and the office without classroom interruption. They are crippled without it. Your help will be greatly appreciated!  Thank you!

    Tuesday, August 25, 2009 1:24 PM

Answers

  • PROBLEM SOLVED. I INSTALLED THE CERT. ON EACH CLIENT MACHINE AND IT RUNS PERFECTLY. I ONLY HAVE ABOUT 100 MACHINES TO DO, SO THAT WASN'T A HUGE ISSUE FOR US. BUT IF SOMEONE HAD MANY MORE THEN THAT WOULD NOT BE AN OPTION. IT MUST HAVE NOT AUTOMATICALLY RECOGNIZED THE CERT.
    Tuesday, August 25, 2009 5:32 PM

All replies

  • Here is out communicator log from our tracing folder on the clients C:drive.

    08/25/2009|08:43:27.832 D30:25C INFO  :: module=uccp flavor=fre version=2.0.6362.0
    08/25/2009|08:43:27.832 D30:25C INFO  :: Initialization flags (200)
    08/25/2009|08:43:27.832 D30:25C ERROR ::  Failed to init PANOVideo[00156F5C], 80070002
    08/25/2009|08:43:29.629 D30:25C INFO  :: SetDeviceDisabled[00156ECC] 0->0
    08/25/2009|08:43:29.629 D30:25C INFO  :: Function: DeviceManager::Initialize
    08/25/2009|08:43:29.629 D30:25C ERROR :: HRESULT API failed: 80070002 = hr. get_RegistryString
    08/25/2009|08:43:29.629 D30:25C INFO  :: Function: DeviceManager::Initialize
    08/25/2009|08:43:29.629 D30:25C ERROR :: HRESULT API failed: 80070002 = hr. get_RegistryString
    08/25/2009|08:43:29.629 D30:25C INFO  :: Function: DeviceManager::Initialize
    08/25/2009|08:43:29.629 D30:25C ERROR :: HRESULT failed: 80ee002d = hr. FindDeviceByName
    08/25/2009|08:43:29.629 D30:25C ERROR :: CRTCMediaController::LoadDeviceSettings Failed while loading device- 0 with 80ee002d.
    08/25/2009|08:43:29.629 D30:25C INFO  :: SetDeviceDisabled[00156F14] 0->0
    08/25/2009|08:43:29.629 D30:25C INFO  :: Function: DeviceManager::Initialize
    08/25/2009|08:43:29.629 D30:25C ERROR :: HRESULT API failed: 80070002 = hr. get_RegistryString
    08/25/2009|08:43:29.629 D30:25C INFO  :: Function: DeviceManager::Initialize
    08/25/2009|08:43:29.629 D30:25C ERROR :: HRESULT API failed: 80070002 = hr. get_RegistryString
    08/25/2009|08:43:29.629 D30:25C INFO  :: Function: DeviceManager::Initialize
    08/25/2009|08:43:29.629 D30:25C ERROR :: HRESULT API failed: 80070002 = hr. get_RegistryString
    08/25/2009|08:43:29.629 D30:25C TRACE :: SetDevice[00156F14] 00000000->0172380C
    08/25/2009|08:43:29.629 D30:25C INFO  :: SetDeviceDisabled[00156F5C] 0->0
    08/25/2009|08:43:29.629 D30:25C INFO  :: Function: DeviceManager::Initialize
    08/25/2009|08:43:29.629 D30:25C ERROR :: HRESULT API failed: 80070002 = hr. get_RegistryString
    08/25/2009|08:43:29.629 D30:25C INFO  :: Function: DeviceManager::Initialize
    08/25/2009|08:43:29.629 D30:25C ERROR :: HRESULT API failed: 80070002 = hr. get_RegistryString
    08/25/2009|08:43:29.629 D30:25C INFO  :: Function: DeviceManager::Initialize
    08/25/2009|08:43:29.629 D30:25C ERROR :: HRESULT API failed: 80070002 = hr. get_RegistryString
    08/25/2009|08:43:29.629 D30:25C INFO  :: Function: DeviceManager::Initialize
    08/25/2009|08:43:29.629 D30:25C ERROR :: HRESULT failed: 80ee002d = hr. FindDeviceByName
    08/25/2009|08:43:29.629 D30:25C ERROR :: CRTCMediaController::LoadDeviceSettings Failed while loading device- 2 with 80ee002d.
    08/25/2009|08:43:29.629 D30:25C INFO  :: SetDeviceDisabled[00156E84] 0->0
    08/25/2009|08:43:29.629 D30:25C INFO  :: Function: DeviceManager::Initialize
    08/25/2009|08:43:29.629 D30:25C ERROR :: HRESULT API failed: 80070002 = hr. get_RegistryString
    08/25/2009|08:43:29.629 D30:25C INFO  :: Function: DeviceManager::Initialize
    08/25/2009|08:43:29.629 D30:25C ERROR :: HRESULT API failed: 80070002 = hr. get_RegistryString
    08/25/2009|08:43:29.629 D30:25C INFO  :: Function: DeviceManager::Initialize
    08/25/2009|08:43:29.629 D30:25C ERROR :: HRESULT failed: 80ee002d = hr. FindDeviceByName
    08/25/2009|08:43:29.629 D30:25C ERROR :: CRTCMediaController::LoadDeviceSettings Failed while loading device- 3 with 80ee002d.
    08/25/2009|08:43:30.165 D30:25C ERROR :: CHidManager::AddHidDevice - CreateFile(\\?\hid#vid_046d&pid_c03d#6&a39b2e3&0&0000#{4d1e55b2-f16f-11cf-88cb-001111000030}) failed with 5
    08/25/2009|08:43:30.165 D30:25C ERROR :: CHidManager::EnumerateHidDevices - AddHidDevice failed 0x80070005
    08/25/2009|08:43:30.165 D30:25C INFO  :: Function: CUccAudioMediaDevice::InternalInitialize
    08/25/2009|08:43:30.165 D30:25C ERROR :: HRESULT API failed: 80004005 = hr. ParsePidVid
    08/25/2009|08:43:30.168 D30:25C INFO  :: Audio device \\?\HDAUDIO#FUNC_01&VEN_10EC&DEV_0888&SUBSYS_18491E01&REV_1000#4&2A024EE8&0&0001#{6994AD04-93EF-11D0-A3CC-00A0C9223196}\EMIXEDCAPTUREWAVE
    08/25/2009|08:43:30.168 D30:25C INFO  :: No matching HID device Fond
    08/25/2009|08:43:30.168 D30:25C INFO  :: Function: CUccMediaDeviceManager::UpdateTelDeviceAdded
    08/25/2009|08:43:30.168 D30:25C ERROR :: Condition failed with 00000000: 'sbstrHidId.Length() != 0'
    08/25/2009|08:43:30.169 D30:25C INFO  :: Function: CUccMediaDeviceManager::GetBoolProperty
    08/25/2009|08:43:30.169 D30:25C ERROR :: Condition failed with 80ee0058: 'spProperty.IsValid()'
    08/25/2009|08:43:30.169 D30:25C INFO  :: Function: CUccMediaDeviceManager::GetBoolProperty
    08/25/2009|08:43:30.169 D30:25C ERROR :: Condition failed with 80ee0058: 'spProperty.IsValid()'
    08/25/2009|08:43:30.169 D30:25C INFO  :: Function: CUccMediaDeviceManager::GetBoolProperty
    08/25/2009|08:43:30.169 D30:25C ERROR :: Condition failed with 80ee0058: 'spProperty.IsValid()'
    08/25/2009|08:43:30.169 D30:25C INFO  :: Function: CUccMediaDeviceManager::GetBoolProperty
    08/25/2009|08:43:30.169 D30:25C ERROR :: Condition failed with 80ee0058: 'spProperty.IsValid()'
    08/25/2009|08:43:30.174 D30:25C INFO  :: CUccMediaDeviceManager::FireDeviceChanged - Default device changed to <Microphone (High Definition Audio Device)> for category=2 media=1 direction=1 reason=2
    08/25/2009|08:43:30.174 D30:25C INFO  :: CUccMediaDeviceManager::FireDeviceChanged - Selected device changed to <Microphone (High Definition Audio Device)> for category=2 media=1 direction=1 reason=2
    08/25/2009|08:43:30.175 D30:25C TRACE :: client[00157070] new sipStack[001CBFE8]
    08/25/2009|08:43:30.264 D30:25C INFO  :: Outgoing 02BE6038-<sip:Corey.Bolton@Hornets.local>, local=(null)
    08/25/2009|08:43:30.517 D30:25C TRACE :: SIP_MSG_PROCESSOR::OnDnsResolutionComplete[02BE6038] Entered host OCS.hornets.local
    08/25/2009|08:43:30.517 D30:25C ERROR :: SIP_STACK::MapDestAddressToNatInternalAddress m_pDirectPlayNATHelp is NULL.  Setting *pIsDestExternalToNat to FALSE
    08/25/2009|08:43:30.517 D30:25C INFO  :: CSIPCompressor::Initialize - Compression setting 2, threshold 128000, timeout 5000
    08/25/2009|08:43:30.523 D30:25C TRACE :: Async work item posted for TLS negotiation: this 02BF6070
    08/25/2009|08:43:30.523 D30:25C TRACE :: ASYNC_SOCKET::SendOrQueueIfSendIsBlocking sending sendBuffer 02BE6A20, this 02BF6070
    08/25/2009|08:43:30.523 D30:25C TRACE :: ASYNC_SOCKET::SendHelperFn sendBuffer 02BE6A20 sent, this 02BF6070
    08/25/2009|08:43:30.525 D30:25C TRACE :: Async work item posted for TLS negotiation: this 02BF6070
    08/25/2009|08:43:30.526 D30:25C TRACE :: Async work item posted for TLS negotiation: this 02BF6070
    08/25/2009|08:43:30.526 D30:698 ERROR :: SECURE_SOCKET: negotiation failed: 80090325
    08/25/2009|08:43:30.526 D30:25C ERROR :: ASYNC_SOCKET::OnConnectError (0x80ee0065) - enter
    08/25/2009|08:43:30.530 D30:25C TRACE :: SIP_MSG_PROCESSOR::OnRequestSocketConnectComplete - Enter this: 02BE6038, callid=(null), ErrorCode: 0x80ee0065
    08/25/2009|08:43:30.530 D30:25C ERROR :: Releasing socket and notifying transactions
    08/25/2009|08:43:30.530 D30:25C ERROR :: SIP_MSG_PROCESSOR::NotifyRequestSocketConnectComplete - Error: 80ee0065
    08/25/2009|08:43:30.530 D30:25C ERROR :: OUTGOING_TRANSACTION::OnRequestSocketConnectComplete - connection failed error 80ee0065
    08/25/2009|08:43:30.530 D30:25C TRACE :: CUccServerEndpoint::UpdateEndpointState - Update state from 1 to 0. Status 80EE0065. Status text (null).
    08/25/2009|08:43:30.530 D30:25C INFO  :: Function: CUccServiceOperationManager::DisableServManager
    08/25/2009|08:43:30.530 D30:25C ERROR :: Condition failed with 80ee0061: 'm_fServMgrEnabled'
    08/25/2009|08:43:30.530 D30:25C INFO  :: Function: CUccServerEndpoint::UpdateEndpointState
    08/25/2009|08:43:30.530 D30:25C ERROR :: HRESULT API failed: 80ee0061 = hr. DisableServManager
    08/25/2009|08:43:30.530 D30:25C INFO  :: Function: CUccOperationProgressEvent::get_StatusText
    08/25/2009|08:43:30.530 D30:25C ERROR :: Condition failed with 00000001: 'm_swszText != 0'
    08/25/2009|08:43:30.538 D30:25C TRACE :: SIP_STACK::DeleteProviderProfile freed profile at index 0

    Tuesday, August 25, 2009 1:44 PM
  • In determing a root cause, was the system working before you attemtped to change the server names, or was it not operation beforehand?
    Jeff Schertz, PointBridge | MVP | MCITP: Enterprise Messaging | MCTS: OCS
    Tuesday, August 25, 2009 2:31 PM
    Moderator
  • PROBLEM SOLVED. I INSTALLED THE CERT. ON EACH CLIENT MACHINE AND IT RUNS PERFECTLY. I ONLY HAVE ABOUT 100 MACHINES TO DO, SO THAT WASN'T A HUGE ISSUE FOR US. BUT IF SOMEONE HAD MANY MORE THEN THAT WOULD NOT BE AN OPTION. IT MUST HAVE NOT AUTOMATICALLY RECOGNIZED THE CERT.
    Tuesday, August 25, 2009 5:32 PM
  • This sounds like the certificate was generated from a certificate authority (CA) that is not trusted by default by the Windows client compare to the likes of Verisign, etc.. As you have discovered, manually installing the certificate on the client is one way to resolve the issue described. In an Active Directory environment, you could use Group Policy to add such CA to the trusted root CA certificate store on clients in the domain.

    Thanks for sharing your solution.

    PS: please do not use all capital letters for future postings

    TechNet Forum Moderator - http://www.leedesmond.com
    Wednesday, August 26, 2009 10:45 PM
    Moderator