Want to win a PS4? Go Premium and enter to win our High-Tech Treats giveaway. Enter to Win

x
?
Solved

windows 2008 r2 sp1 update issue 80072f8f error

Posted on 2012-03-19
16
Medium Priority
?
5,147 Views
Last Modified: 2012-03-27
Hello,

I am getting a windows server 2008 r2 sp1 update issue with error message of 80072f8f.  Most of which points to issues with root certificates.  Being that I can't run updates on the server, I won't be able to download the updates to the root certificates.  I am stuck and have tried quite a few things including renaming the softwaredistribution folder.  What next?   This is a fairly new server installation which has Exchange 2010 on it.  Can anyone shed some light?
0
Comment
Question by:SloanIT
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 8
  • 6
  • 2
16 Comments
 
LVL 19

Expert Comment

by:*** Hopeleonie ***
ID: 37740830
Have you tried System Update Readiness Tool for Windows Server 2008 R2?
http://www.microsoft.com/download/en/details.aspx?id=14668
0
 

Author Comment

by:SloanIT
ID: 37740864
no, I'll try it now.
0
 

Author Comment

by:SloanIT
ID: 37740888
I am getting the same error, even after rebooting.
0
Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

 
LVL 19

Expert Comment

by:*** Hopeleonie ***
ID: 37741091
Can you please upload the CheckSUR.log from %SYSTEMROOT%\Logs\CBS\CheckSUR.log?
0
 

Author Comment

by:SloanIT
ID: 37742827
here is the checksur.log.


=================================
Checking System Update Readiness.
Binary Version 6.1.7601.21645
Package Version 14.0
2012-03-20 02:24
Checking Windows Servicing Packages

Checking Package Manifests and Catalogs

Checking Package Watchlist

Checking Component Watchlist

Checking Packages

Checking Component Store

Summary:
Seconds executed: 191
 No errors detected
0
 
LVL 19

Expert Comment

by:*** Hopeleonie ***
ID: 37742983
Can you check this?
http://windows.microsoft.com/en-US/windows-vista/Windows-Update-error-80072f8f (Vista)
http://windows.microsoft.com/en-US/windows7/Windows-Update-error-80072f8f (same as Server 2008 and please don't run the FixIt)

Is your date and time correct?
0
 

Author Comment

by:SloanIT
ID: 37743036
I have checked on the time on the server and all is correct.  It's up to date and time zone is correct.  I have reviewed quite q few different articles so far, but nothing yet.  The two that you mentioned are amongst the most popular posts out there related to this error.

I believe the issue is related to Windows updates and root certificates.  When Windows updates connect to obtain updates, it doesn't connect due to certificates error.  In fact, I go to some https sites, such as https://www.testexchangeconnectivity.com, I get a certificate error indicating that untrusted certificate.  The certificate is issued by Microsoft Secure Server Authority.
0
 
LVL 19

Expert Comment

by:*** Hopeleonie ***
ID: 37743088
Can you please zip the System and Application Eventlogs and send it to me? You will find my email address here:
http://www.experts-exchange.com/M_4994090.html
(under About me)

After give me some time for the analyse...
0
 

Author Comment

by:SloanIT
ID: 37743193
OK, I have sent it to you. Please let me know your findings.  Thank you.
0
 
LVL 19

Expert Comment

by:*** Hopeleonie ***
ID: 37744448
Thanks for the Logs. We will find a solution together, but as told, I need time (Note this can take some days to identify the problem). This is also interesting for me, because this issue is also new for me. Hope you are not in a hurry. If you have the time and willing to continue please let me know.
The reason I’m asking you this is, because some askers are not replaying after a time. Then we both will lose lot of time.

Thanks for understanding.
0
 

Author Comment

by:SloanIT
ID: 37744662
Unfortunately, I am look to get this done rather quickly because this issue branches out to other issues and is also a server that is now in production.  I appreciate you taking your time in researching this.  I'll respond asap whenever I can or if I also find a solution and will share the solution with you.   Meanwhile, the sooner that one of us find the solution, the better.  If not, I'll have to open a ticket with MS.  Thank you again.
0
 

Accepted Solution

by:
SloanIT earned 0 total points
ID: 37745140
I got it!  The issue was that I wasn't able to perform Windows Updates, which was caused by a Root CA certificate not being there.  I exported the GTE Cyber Trust Global Root Certificate from another server as a .P7B file and transferred it to the server.  Then I imported it to trusted root certification authority.  Then I tested it by going to https://www.update.microsoft.com and the certificate warning was gone.  Then, I ran Windows Updates and sure enough, it started to download 68 updates that need to be applied.

Anyway, I hope the above information to whoever that comes along this thread.  Thank you again Hopeleonie forall your help thus far.
0
 
LVL 19

Expert Comment

by:*** Hopeleonie ***
ID: 37745888
Hi

Good news and thanks for letting me know. I joy with you...!
It was a pleasure to troubleshoot it with you.

Have a nice day.
Hopeleonie
0
 
LVL 1

Expert Comment

by:raj31581
ID: 37751985
Turns out you need to update the root certificate for the machine first!   You can download the update for this from the following Microsoft URL:
 
http://www.microsoft.com/download/en/details.aspx?displaylang=en&id=5397
 
Once downloaded, double click on the file to install
0
 
LVL 1

Expert Comment

by:raj31581
ID: 37752029
Please try installing the Hotfix from the link below:
http://windows.microsoft.com/en-US/windows7/Windows-Update-error-80072f8f
0
 

Author Closing Comment

by:SloanIT
ID: 37770393
worked out
0

Featured Post

NFR key for Veeam Backup for Microsoft Office 365

Veeam is happy to provide a free NFR license (for 1 year, up to 10 users). This license allows for the non‑production use of Veeam Backup for Microsoft Office 365 in your home lab without any feature limitations.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I had a question today where the user wanted to know how to delete an SSL Certificate, so I thought that I would quickly add this How to! Article for your reference. WHY WOULD YOU WANT TO DELETE A CERTIFICATE? 1. If an incorrect certificate was …
Resolving an irritating Remote Desktop connection that stops your saved credentials from being used.
This tutorial will walk an individual through locating and launching the BEUtility application to properly change the service account username and\or password in situation where it may be necessary or where the password has been inadvertently change…
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…

610 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question