locked
Clients not able to verify Machine Policies after Site recovery RRS feed

  • Question

  • I have a recovered CM12 SP1 site running in mixed mode.  Clients are able to communicate with the MP but machine policies are not being applied and Updates and App deployments are not working. 

    The PolicyAgent.log on the client shows "Signature verification failed for PolicyAssignmentID" errors with the machine policies.  User policies look ok. 

    MP_Status.log on the MP shows: Mp Status: processing event: SMS_PolicyAgent_PolicyAuthorizationFailure, for machine: PC-XX MP_StatusManager 5/31/2013 10:04:21 AM 3148 (0x0C4C)

    I have tried replacing the site signing cert and web cert, recreated the boundries and ensured no overlap,  client uninstall with and reinstall with RESETKEYINFORMATION=TRUE  with no luck. 

    The file system on the Site wasn't backed up and restored but im not sure if that has anything to do with it.  Im not entirely sure where CM keeps the policy and/or signature files.

    Any help or suggestions on things I should look at would be great.

    -Matt

    Friday, May 31, 2013 2:56 PM