Posted on

Remote Desktop Fails and server logs schannel error

Connecting to a remote desktop server fails and the server logs and error with the source: Schannel; Event ID 36888.  Schannel errors are usually down to problems with SSL and certificates.  This case is no different.  Simply run mmc.exe and go to “file” then “add/remove snap-ins” and select “certificates” and choose “computer account”

Next navigate to remote desktop > Certificates and highlight the certificate with the computer name listed in the “issued to” and “issued by” field and delete it.

certificates

 

Once the certificate is deleted simply disable then re-enable remote desktop services and restart the remote desktop service service.  This should regenerate the certificate and you should now be able to connect to your remote desktop server again.

Posted on

This workbook cannot be opened because it is not stored in an Excel Services Application trusted location when using SSL in Sharepoint 2010

When attempting to view or edit and Excel workbook in the browser you get the following error:

Cannot open trusted location

Curiously this error doesn’t occur when opening the same file without using SSL over a HTTP which suggests it isn’t actually the location the file is stored in which isn’t trusted but in fact the URL used to access it.

To resolve the problem follow the following steps:

1. Open the central administration site and navigate to “Application settings” and then “Manage Service Applications”

service applications screenshot

2. Once the “manage Service Applications” page has loaded locate and click on “Excel Services Application”

ExcelServicesApplication

3. Click on “Trusted File Locations”

trustedfilelocations

4.  Click on “Add Trusted File Location” and type “https://” in the address field then tick the “Children trusted” box.  You may also wish the change the “Allow External Data” setting to “Trusted data connection libraries and embedded if required in your worksheets.

trustedlocationconfig

5. Click on OK and re-try opening your excel workbook.  The workbook should open correctly.

While the above settings are appropriate for most organisations you may wish to edit the default http:// path to reflect only your own access URLs instead of the whole http:// and https:// range.  If you do this just remember to revisit this should you add or change any alternate access mappings.

Posted on

SCCM 2012 Client Package waiting for prestaged content

Clients local to the SCCM site (or all clients for a single site install) fail to deploy the client and the distribution status shows “Distribution Manager is waiting for Package XXX00001 content to be prestaged on the distribution point”

This is a strange one which can crop up after an upgrade to sp1 or on a fresh install.  It doesnt appear to be possible to distribute the content manually as the client package is a system one and the option is not avaliable.  A work around is to navigate in to Administration, highlight the affected server and right click on the distribution point site system role and then properties.  Simply deselect the “Enable this distribution point for prestaged content”

disableprestaged

 

Next locate the package in the software library and click on “Update Distribution Points.”  The client should now succeed in distributing and it is safe to re-enable the distribution point for prestaged content if required.

updatecontent