Contact Us Get Free Products
Search icon Contact Us Get Free Products
SCCM/MECM

SCCM Distribution Point Failed to decrypt Cert PFX Data Error

Benoit LecoursJune 02 20141 Min Read

Founder of System Center Dudes. Based in Montreal, Canada, Senior Microsoft SCCM Consultant, 8 times Enterprise Mobility MVP. Working in the industry since 1999. His specialization is designing, deploying and configuring SCCM, mass deployment of Windows operating systems, Office 365 and Intune deployments.

Benoit Lecours

President
Table of Content
SCD Collaborators

Symptoms :

  • Distmgr.log shows lot of “Failed to decrypt cert PFX data” errors
  • You have shared DP enabled
  • You have the same numbers of errors than you have shared Distribution Points
  • SCCM Distribution Point Failed decrypt cert PFX data
Failed to decrypt cert PFX data

If you are not familiar with Share DP, here’s Microsoft definition :

During migration, you can share distribution points from a source hierarchy with the destination hierarchy. You can use shared distribution points to make content that you have migrated from a source hierarchy immediately available to clients in the destination hierarchy without having to recreate that content, and then distribute it to new distribution points in the destination hierarchy. When clients in the destination hierarchy request content that is deployed to distribution points that you have shared, the shared distribution points can be offered to the clients as valid content locations.

SCCM Distribution Point Failed decrypt cert PFX data Resolution

You can safely ignore these error. I’ve made some test on my side and the error will goes away when you reassign distribution point to your 2012 hierarchy.

After reassigning a distribution point you’ll see 1 error less in the log. At the end of your migration the error will be completely gone.

This error happens because your 2007 DP certificates are not “known” to 2012.

More : Technet discussion on the topic : Here

certificate distmgr.log PFX SCCM 2012
SCD Collaborators
Comments (2)

F7f7f7; border: 1Px solid

08.10.2019 AT 09:05 AM
This article is truly a nice one itt assists nnew the web people, who are wishing in favor of blogging.
Hide replies 0

Lee

09.12.2018 AT 06:35 PM
Good stuff....saved a scare 🙂
Hide replies 0
Related posts
Benoit LecoursMay 24 20242 Min Read
Renew Intune Apple MDM Push Certificate

To enroll and manage iOS/MAC devices in Intune, you must create an Intune Apple Certificate. These...

SCCM/MECM
Benoit LecoursMay 08 20243 Min Read
Deploy Microsoft Authenticator app using Microsoft Intune

With the increasing number of mobile users requesting access to external resources many...

SCCM/MECM
Benoit LecoursApril 30 20242 Min Read
Understanding Intune Autopilot Error 0x8007052e

Two days ago, Microsoft had an outage affecting Intune AutoPilot Pre-Provisionning. Users...

SCCM/MECM
Request a Quote

Please fill out the form, and one of our representatives will contact you in Less Than 24 Hours. We are open from Monday to Friday.

Consulting Services

Subscription

PatchMyPC

Reports and Guides

I'm interested in working with you

Consulting services and time banks are used for generic requests. All others are fixed-price plans.

Never share sensitive information (credit card numbers, social security numbers, passwords) through this form.
Request Sent

Thank you for your request. You will receive an email with more details. Take note that we normally work from Monday to Friday. We will get in touch with you as soon as possible.

Comment Sent

Thank for your reply!

Error

Something went wrong!