on 01-08-2014 9:31 AM
Hello Gurus,
We have setup Afaria 7 SP3 and performed basic configuration required for device enrollment.
We are encountering below error while doing Android device enrollment
- Failed to acquire key: No Data received from server: 204
Corresponding to above error, there is an error in IIS log entry with 204 HTTP error
yyyy-mm-dd hh:mm:ss xx.xxx.x.xx POST /aips/aipService.svc/package/cert/generateKey 2 - 80 - xx.xx.xxx.x Afaria+Android+Client 204 0 0 140
Any pointers for this issue resolution will be helpful.
Thanks,
Mayank
Hello Guys,
Thanks for your responses.
The issue was with windows local security policy for encryption. This policy was restricting AIPS service to generate the key. Disable the policy and enrollment works.
Regards,
Mayank
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi,
We are getting the same error in one of the Android device rest all are working fine.
We tried enrolling the device in two different Afaria servers, even then the error persists. We are getting multiple entries of the device when we try to enrol the device.
Please find error screenshot.
We suspect error in client.
Any help is appreciated.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hello All,
Please disable below OS level security policy on the server. You will encounter this error then.
System cryptography: Use FIPS compliant algorithms for encryption, hashing, and signing
Regards,
Mayank
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi,
Any reason for not installing Afaria 7 SP4 version.
With Afaria 7SP3 you need to install all the relevant Hotfix available in frontline.sybase.com.
For your error.
Please provide more details on design ? do you have relay server or without relay server.
What process you followed after completing the Afaria 7 setup.
Please check the following
1 . All ports are open between device and server.
2. GCM configuration done and port open for GCM
3. Device communication setting properly configured in afaria console setting area.
4. Enrollment and package server setting properly configured in afaria console setting area.
5. Groups and policy properly created and linked.
6. while creating enrollment code the Enrollment url is correct ( you can check by doing INSPECT).
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hello Chetan,
Thanks for your response.
Same issue occurs in SP4 version as well. We have re-installed Afaria to SP3 version as of now.
More details on the setup:
No relay server configure at the moment.
MS SQL Database is installed on different server.
Afaria, API, Admin, Enrollment & PS are installed on same host. Afaria Port is configured to 81 and rest of the configuration mentioned in points 1 to 6 are validated & verified.
- All ports are checked & opened
- GCM configuration is in place
- device communication is configured to host:81 and seed data can be seen in android client during enrollment request
- Enrollment & Package server hosts are configured in respective configuration page
- Group, Session & Enrollment policy is created
- Enrollment code is validated, TinyURL is configured for enrollment code generation and is properly resolved at android device
Below is the SESSION.LOG from android client
- Connecting to HTTP://host.sap.local:81
- Connected to host.sap.loca:81
- Failed to acquire key: No Data received from server: 204
- The Server refused to accept a connection from this client due to security restrictions.
- Failed at dd/mm/yyyy hh:mm PM
Please let me know if you need any further information
Thanks,
Mayank
Hi,
Upgrade of Afaria 7 SP4 is from Afaria7 sp3 or Afaria 7 sp2.
For Afaria7SP3 you need to install all the hotfix patch , i will recommended you to upgrade to afaria7 sp4 from afaria sp3
I will suggest you to install afaria 7 sp3 with all the component and than install Afaria 7 sp4.
Please check the url : http://localhost/aips2/aipService.svc/help
It should indicate the XML .
For Testing purpose you can test with the following setting:
1 . In Device communication unchecked all the protocol and select XNET : 3007 .
2. Device communication path will be xnet://ipaddress:3007
3. in enrollment server unchecked HTTPS : and mention the Ip address instead of hostname
4. for portal package unchecked https
5. Create new enrollment code and make sure in general area of enrollment code the communication should be xnet://ip:3007.
6 . Make sure the group and policy are linked.
7. If Session manager create unpublished the policy of session manager.
8. INSPECT the url of enrollment code it should start from xnet://ip:3007/
9. Connect the device to corporate WIFI connection which have access to your afaria server ip address.
Test the above process
As you are working without the relay server, but most of our documents and guides include the RS in their architecture, I would recommend to revisit your setup.
Make sure your ports in the configuration and settings are correct. With the RS, all incoming traffic is directed onto the RS with one single port. That is no longer true is you work without the RS. So this will have significant impact how you configure everything.
Under the line, it will help if you write down all the Afaria components, and their ports they are listing on. Then write down all the settings you have in the Afaria config that touch ports and URLs. This will help you to map out the networking part and will make issues much more transparent.
User | Count |
---|---|
85 | |
10 | |
10 | |
9 | |
6 | |
6 | |
6 | |
5 | |
4 | |
3 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.