Error : Invalid value for web configuration setting: Clm.EnrollAgent.Certificate.Hash


 

Hello everyone,

When you renew the certificate of the accounts ClmAgent and ClmEnrollAgent and update the web.config file with the new certificate hashes, you have this error message

image

In the eventlog, you also have this error :

Warning,9/26/2018 9:18:29 AM,ASP.NET 4.0.30319.0,1310,Web Event,"Event code:  3008                                                                                                                                                       

Event message: A configuration error has occurred.                                                                                                                                                        

Event time: 9/26/2018 9:18:29 AM                                                                                                                                                

Event time (UTC): 9/26/2018 7:18:29 AM                                                                                                                                                     

Event ID: c7c35726a4b1417fb5a52139727a0d7c                                                                                                                                                        

Event sequence: 2                                                                                                                                                   

Event occurrence: 1                                                                                                                                                

Event detail code: 0                                                                                                                                               

Application information:                                                                                                                                                     

    Application domain: /LM/W3SVC/1/ROOT/CLMxxxx                                                                                                                                         

    Trust level: Full                                                                                                                                                    

    Application Virtual Path: /CLM                                                                                                                                                    

    Application Path: D:\FIM\Certificate Management\web\                                                                                                                                               

    Machine name: XXXX                                                                                                                                                  

Process information:                                                                                                                                              

    Process ID: 2352                                                                                                                                                 

    Process name: w3wp.exe                                                                                                                                                

    Account name: XXXX\clmWebPool                                                                                                                                               

Exception information:                                                                                                                                         

    Exception type: ConfigurationErrorsException                                                                                                                                                        

    Exception message: An error occurred creating the configuration section handler for ClmConfiguration: Invalid value for web configuration setting: Clm.EnrollAgent.Certificate.Hash. Value received: xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx. (D:\FIM\Certificate Management\web\web.config line 65)

   at System.Configuration.BaseConfigurationRecord.EvaluateOne(String[] keys, SectionInput input, Boolean isTrusted, FactoryRecord factoryRecord, SectionRecord sectionRecord, Object parentResult)                                                                                                                                              

   at System.Configuration.BaseConfigurationRecord.Evaluate(FactoryRecord factoryRecord, SectionRecord sectionRecord, Object parentResult, Boolean getLkg, Boolean getRuntimeObject, Object& result, Object& resultRuntimeObject)                                                                                                                                            

   at System.Configuration.BaseConfigurationRecord.GetSectionRecursive(String configKey, Boolean getLkg, Boolean checkPermission, Boolean getRuntimeObject, Boolean requestIsHere, Object& result, Object& resultRuntimeObject)                                                                                                                                            

   at System.Configuration.BaseConfigurationRecord.GetSection(String configKey)                                                                                                                                                  

   at Microsoft.Clm.Web.GlobalASAX.Application_Start(Object sender, EventArgs e)                                                                                                                                              

   at Microsoft.Clm.Web.Global.Application_Start(Object sender, EventArgs e)                                                                                                                                              

Invalid value for web configuration setting: Clm.EnrollAgent.Certificate.Hash. Value received: ‎xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx.                                                                                                                                                       

   at Microsoft.Clm.Common.ClmConfiguration.HexStringToByteArray(String hex, String settingName)                                                                                                                                                     

   at Microsoft.Clm.Common.ClmConfiguration.Create(Object parent, Object configContext, XmlNode section)                                                                                                                                         

   at System.Configuration.RuntimeConfigurationRecord.RuntimeConfigurationFactory.CreateSectionImpl(RuntimeConfigurationRecord configRecord, FactoryRecord factoryRecord, SectionRecord sectionRecord, Object parentConfig, ConfigXmlReader reader)                                                                                                                                                    

   at System.Configuration.RuntimeConfigurationRecord.RuntimeConfigurationFactory.CreateSectionWithRestrictedPermissions(RuntimeConfigurationRecord configRecord, FactoryRecord factoryRecord, SectionRecord sectionRecord, Object parentConfig, ConfigXmlReader reader)                                                                                                                                                   

   at System.Configuration.RuntimeConfigurationRecord.CreateSection(Boolean inputIsTrusted, FactoryRecord factoryRecord, SectionRecord sectionRecord, Object parentConfig, ConfigXmlReader reader)                                                                                                                                                    

   at System.Configuration.BaseConfigurationRecord.CallCreateSection(Boolean inputIsTrusted, FactoryRecord factoryRecord, SectionRecord sectionRecord, Object parentConfig, ConfigXmlReader reader, String filename, Int32 line)                                                                                                                                                       

 

The cause could be in the D:\FIM\Certificate Management\web\web.config with the hash.

To resolve this issue, we would suggest to open a ticket for the MIM Microsoft support to troubleshoot deeper the issue.

 

Thank you,

Huu-Duc, LÊ


Comments (0)

Skip to main content