Hello, mrant-k,

Prior to work with the engineering team, please provide the information below:

1- Intel® EMA software version

2- Windows Server version and location (physical or virtual)

3- SQL version and location (physical or virtual)

4- Are EMA server and database in the same location?

5- Do you mind sending me the EMA server log, the path is the following:

[System drive]\Program File(x86)\Intel\Platform Manager\EmaLogs

Look forward to your response

Regards,

Miguel C.

Intel Customer Support Technician

Sure.

1. ema version = 1.10.1.0.1
2. Virtual WinServer2019 DataCenter
3. SQL Express 2019
4. DB and EMA server are in the same location
5. EMA server logs folder contain a bunch of log files. Were you looking for a specific file?

    

Hello, mrant-k,

Please send me the files without the date, called:

EMAlog-Webserver.txt

EMAlog-Swarmserver.txt

EMAlog-Ajaxserver.txt

EMAlog-Recoveryserver.txt

EMAlog-Manageabilityserver.txt

They are the latest logs. Look forward to your response

Regards,

Miguel C.

Intel Customer Support Technician

Hello, mrant-k,

Adding to my previous post, please send me a picture from IIS.

1- Go to the EMA server

2- Open Manage Computer Certificates

3- Right-click over the personal folder

4- Select Find Certificates

5- In the contains box, type the certificate name

6- In Look in field: Select Issues to

7- Then, Hit Find now.

Please do the same for

In the contains box, type root

In the Look in field: Select “Issues to” Please do the same for “SHA1 Hash”

Excuse me for the extra steps.

Regards,

Miguel C.

Intel Customer Support Technician

Hello, mrant-k,

Please send me the pictures with the instructions below:

1-Do you mind opening the columns: Issued By, Intended Purposes, and Friendly Name for the picture called 1.png

From picture 2.png please open the columns Issued To, Issued By, and Intended Purpose

2-By any chance, did you filter by SHA1? If not, try using Starfield (Contains) and SHA1 (Look in field).

Please do not dispose of the GoDaddy certificate.

I am wondering if we can set a web-meeting next week, so we can expedite the resolution of the issue.  If you agree, I will send a private message with the invite.  Include a range of hours (Time Zone) and days available.

Look forward to your response.

Regards,

Miguel C.

Intel Customer Support Technician

Sure thing. 

Hello, mrant-k,

Do you mind sending me a new picture; this time please expand the columns completely. It is very important for validation.

Please let me know if you get any results while sorting by SHA1 (Look in field).  If yes, please share the picture, and name it SHA1.

Regards,

Miguel C.

Intel Customer Support Technician

Hello @MIGUEL_C_Intel ,

Very happy I came across this thread.

I'm experiencing the exact same issues as @mrant-k .

I'm trying Lan-Less deployments with 3 test devices to test for a new solution we would like to implement.

Desktop client connected via LAN, NOT WIFI or adapters

PKI DNS is set in BIOS of the devices

• Can't provision Intel AMT v12, v15 or v16
• GoDaddy certificate is the vPRO one, but shows the 4 lines in the certificate chain with the Class 2 SHA1 as line 1.

Can I also share the requested screenshots from the certificates with you for investigation?

1- Intel® EMA software version - EMA v1.10.1.0

2- Windows Server version and location (physical or virtual) - virtual Azure template - 2019

3- SQL version and location (physical or virtual) - virtual SQL Express

4- Are EMA server and database in the same location? Yes, same server

5- Do you mind sending me the EMA server log, the path is the following:

[System drive]\Program File(x86)\Intel\Platform Manager\EmaLogs

I have another thread going on with basically the exact same issue. I didn't have a system to test until recently that was between vpro 11-15.

AMT 11 and lower - It would actually provision in admin control mode but CIRA won't connect (But that turns out just to be an issue with the age of the system and the latest vpro server version)

AMT 16+ - It would not provision, and have a cert_verify_error when trying to provision it into admin control mode.

AMT 14 - Provisioned perfectly with full admin control access.

I'm currently working to resolve it so systems like the AMT 16 system I have provision correctly, and to confirm where the error is with the certificate so I can try to get my vpro cert provider to correct the issue. 

I've had the same problems with certificate support staff where they had no idea and ran basic troubleshooting, and had incorrect information trying to say my cert was wrong, then issue me the exact same cert that was the "correct" cert, and then just ignore the tickets hoping I''d leave them alone I assume.

Hello, mrant-k and JeroenW,

We are doing a review of pictures and logs. An update will be shared soon.

Regards,

Miguel C.

Intel Customer Support Technician

Hi Miguel,

Thanks. Please keep us posted. As of right now, our vPro initiative has stalled awaiting your input.

Hello, mrant-k,

We appreciate your comprehension.  An update will be provided soon.

Regards,

Miguel C.

Intel Customer Support Technician

Hi Miguel,

I'm not sure if you received my response to your private message. Please let me know if we're still on for the meeting today. 

Hello, mrant-k,

It was our pleasure to meet with you today.

Please keep us updated with the results of the new Certificate request. 

Remember to select GoDaddy-SHA2 from the Request Algorithm option.

And check the vPro option.

I look forward to hearing from you.

Regards,

Miguel C.

Intel Customer Support Technician

Hello, mrant-k,

Thank you for your confirmation.

Please keep us posted with the results of the Intel® EMA reinstallation.

Regards,

Miguel C.

Intel Customer Support Technician