Forum Discussion
didn't find cert in both store - in IntuneManagementExtension
Hello
I am trying to troubleshoot why a win32 App will not install on a computer with Intune.
In IntuneManagementExtension - I get the error
Didn't find cert in both store, retry 30 IntuneManagementExtension 11 (0x000B)
Then
[Policy] Failed to get device id,
[DiscoveryService] Failed to get device id IntuneManagementExtension 5 (0x0005)
Any suggestions would be appreciated.
Dave
8 Replies
- Download psexec, run a powershell session as system with it (-i -s)
And launch this script
$certificate = Get-ChildItem -Path Cert:\Currentuser\My\
$password= "secret" | ConvertTo-SecureString -AsPlainText -Force
Export-PfxCertificate -Cert $certificate -FilePath c:\intune.pfx -Password $password
$password= "secret" | ConvertTo-SecureString -AsPlainText -Force
Import-PfxCertificate -Exportable -Password $password -CertStoreLocation Cert:\LocalMachine\My -FilePath c:\intune.pfx - Hi
Please read my blogs about this intune mdm cert... as it is quite important
https://call4cloud.nl/2021/04/alice-and-the-device-certificate/
And
https://call4cloud.nl/2022/07/the-incredibly-strange-device-who-stopped-syncing-and-became-certificate-zombies/
They both describe hoy to deal with this issues- Hello - I followed https://call4cloud.nl/2021/04/alice-and-the-device-certificate/
There is a section about the MDM Certificate. I checked and i can't find the MDM intune certificate. I can see the InTune Root certificate in the Trusted Root but no MDM Certificate there and not in the Personal Certificated either...- Mmm no intune cert , no intune sync… 🙂 i guess you need to try that fix i mentioned … did you also read that other blog?
- Can you run an dsregcmd /status in a cmd and check if the DeviceAuthStatus is success and if the device is aad joined.
- Thanks for your response. I ran the above command - DeviceAuthStatus : SUCCESS under Device Details section
