Error : Invalid value for web configuration setting: Clm.EnrollAgent.Certificate.Hash
Hello everyone,
When you renew the certificate of the accounts ClmAgent and ClmEnrollAgent and update the web.config file with the new certificate hashes, you have this error message
In the eventlog, you also have this error :
Warning,9/26/2018 9:18:29 AM,ASP.NET 4.0.30319.0,1310,Web Event,"Event code: 3008
Event message: A configuration error has occurred.
Event time: 9/26/2018 9:18:29 AM
Event time (UTC): 9/26/2018 7:18:29 AM
Event ID: c7c35726a4b1417fb5a52139727a0d7c
Event sequence: 2
Event occurrence: 1
Event detail code: 0
Application information:
Application domain: /LM/W3SVC/1/ROOT/CLMxxxx
Trust level: Full
Application Virtual Path: /CLM
Application Path: D:\FIM\Certificate Management\web\
Machine name: XXXX
Process information:
Process ID: 2352
Process name: w3wp.exe
Account name: XXXX\clmWebPool
Exception information:
Exception type: ConfigurationErrorsException
Exception message: An error occurred creating the configuration section handler for ClmConfiguration: Invalid value for web configuration setting: Clm.EnrollAgent.Certificate.Hash. Value received: xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx. (D:\FIM\Certificate Management\web\web.config line 65)
at System.Configuration.BaseConfigurationRecord.EvaluateOne(String[] keys, SectionInput input, Boolean isTrusted, FactoryRecord factoryRecord, SectionRecord sectionRecord, Object parentResult)
at System.Configuration.BaseConfigurationRecord.Evaluate(FactoryRecord factoryRecord, SectionRecord sectionRecord, Object parentResult, Boolean getLkg, Boolean getRuntimeObject, Object& result, Object& resultRuntimeObject)
at System.Configuration.BaseConfigurationRecord.GetSectionRecursive(String configKey, Boolean getLkg, Boolean checkPermission, Boolean getRuntimeObject, Boolean requestIsHere, Object& result, Object& resultRuntimeObject)
at System.Configuration.BaseConfigurationRecord.GetSection(String configKey)
at Microsoft.Clm.Web.GlobalASAX.Application_Start(Object sender, EventArgs e)
at Microsoft.Clm.Web.Global.Application_Start(Object sender, EventArgs e)
Invalid value for web configuration setting: Clm.EnrollAgent.Certificate.Hash. Value received: xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx.
at Microsoft.Clm.Common.ClmConfiguration.HexStringToByteArray(String hex, String settingName)
at Microsoft.Clm.Common.ClmConfiguration.Create(Object parent, Object configContext, XmlNode section)
at System.Configuration.RuntimeConfigurationRecord.RuntimeConfigurationFactory.CreateSectionImpl(RuntimeConfigurationRecord configRecord, FactoryRecord factoryRecord, SectionRecord sectionRecord, Object parentConfig, ConfigXmlReader reader)
at System.Configuration.RuntimeConfigurationRecord.RuntimeConfigurationFactory.CreateSectionWithRestrictedPermissions(RuntimeConfigurationRecord configRecord, FactoryRecord factoryRecord, SectionRecord sectionRecord, Object parentConfig, ConfigXmlReader reader)
at System.Configuration.RuntimeConfigurationRecord.CreateSection(Boolean inputIsTrusted, FactoryRecord factoryRecord, SectionRecord sectionRecord, Object parentConfig, ConfigXmlReader reader)
at System.Configuration.BaseConfigurationRecord.CallCreateSection(Boolean inputIsTrusted, FactoryRecord factoryRecord, SectionRecord sectionRecord, Object parentConfig, ConfigXmlReader reader, String filename, Int32 line)
The cause could be in the D:\FIM\Certificate Management\web\web.config with the hash.
To resolve this issue, we would suggest to open a ticket for the MIM Microsoft support to troubleshoot deeper the issue.
Thank you,
Huu-Duc, LÊ