Consulting

Consulting Services

Now Available!
Connect
Mailing List

Sign Up Now!
Richard M. Hicks Consulting Newsletter
@richardhicks
- RT @crpietschmann: Do you have a #Tech #Blog and write about #Microsoft related topics? Reply with URL so I can add it to @Build5Nines Week…:: 1 hour ago
- Accidentally deleted an #Azure AD user (me!). Restored it, but it keeps getting deleted! Not sure why. It's not bei… twitter.com/i/web/status/1…:: 3 hours ago
- Troubleshooting #Windows 10 Always On #VPN IKEv2 policy mismatch errors. #Microsoft #Windows10 #Win10 #mobility… twitter.com/i/web/status/1…:: 4 hours ago
- Excited to be returning to Switzerland in June. This is the only training event I'm doing this year in Europe. Don'… twitter.com/i/web/status/1…:: 6 hours ago
- Troubleshooting and resolving #Windows 10 Always On #VPN errors 691 and 812. #Microsoft #Windows10 #Win10 #aovpn… twitter.com/i/web/status/1…:: 7 hours ago
Follow @richardhicks
Facebook

Facebook
RSS Feed
- RSS - Posts
- RSS - Comments
Archives
- January 2020
- December 2019
- November 2019
- October 2019
- September 2019
- August 2019
- July 2019
- June 2019
- May 2019
- April 2019
- March 2019
- February 2019
- January 2019
- December 2018
- November 2018
- October 2018
- September 2018
- August 2018
- July 2018
- June 2018
- May 2018
- April 2018
- March 2018
- February 2018
- January 2018
- December 2017
- November 2017
- October 2017
- September 2017
- August 2017
- July 2017
- June 2017
- May 2017
- April 2017
- March 2017
- February 2017
- January 2017
- December 2016
- November 2016
- October 2016
- September 2016
- August 2016
- July 2016
- June 2016
- May 2016
- April 2016
- March 2016
- February 2016
- January 2016
- December 2015
- November 2015
- October 2015
- September 2015
- August 2015
- July 2015
- June 2015
- May 2015
- April 2015
- March 2015
- February 2015
- January 2015
- November 2014
- October 2014
- September 2014
- August 2014
- June 2014
- May 2014
- April 2014
- March 2014
- February 2014
- January 2014
- December 2013
- November 2013
- October 2013
- September 2013
- August 2013
- July 2013
- June 2013
- May 2013
- April 2013
- March 2013
- February 2013
- January 2013
- December 2012
- November 2012
- October 2012
- September 2012
- July 2012
- June 2012
- May 2012
- April 2012
Categories
Tag Cloud
Active Directory ADC Always On VPN AOVPN application delivery controller authentication Azure CA certificate certificates cloud configuration device tunnel DirectAccess DNS education encryption enterprise mobility error F5 firewall Forefront Forefront UAG Forefront UAG 2010 group policy high availability hotfix IKEv2 Important Links InTune IP-HTTPS IPsec IPv6 IPv6 transition technology Kemp load balancer load balancing LoadMaster Manage Out Microsoft Mobility multisite Networking network location server NLB NLS OTP performance PKI PowerShell ProfileXML public cloud redundancy Remote Access routing and remote access service RRAS scalability security Server 2012 SSL SSTP TLS training troubleshooting UAG update VPN Windows Windows 7 Windows 8 Windows 10 Windows Server Windows Server 2012 Windows Server 2012 R2 Windows Server 2016

All posts in category Network Device Enrollment Service

Microsoft Intune NDES Connector Error 0x80004003

Microsoft Intune NDES Connector Error 0x80004003 To support certificate deployment for non-domain Windows 10 Always On VPN clients, a Windows Server with the Network Device Enrollment Service (NDES) role can be provisioned on-premises. In addition, the Microsoft Intune Connector must be installed and configured on the NDES server to allow Intune-managed clients to request and receive certificates from the on-premises Certification Authority (CA) server.

Connection Status Error

After installing the Microsoft Intune Connector, the administrator may encounter the following error message.

“An error occurred while connecting to the Intune Service. Error code is 0x80004003. The NDES Connector will retry the connection as soon as possible.”

IE Enhanced Security Configuration

This error can occur if Internet Explorer Enhanced Security Configuration (ESC) is enabled. To resolve this issue, disable ESC for administrators and users by opening the Server Manager on the NDES server and performing the following steps.

1. In the navigation pane click Local Server.
2. Click the On link next to IE Enhanced Security Configuration.
3. Click Off in the Administrators section.
4. Click Off in the Users section
5. Click Ok.

Microsoft Intune NDES Connector Error 0x80004003

Once complete, restart the NDES Connector service using the following PowerShell command.

Restart-Service NDESConnectorSvc -PassThru

Additional Configuration

Microsoft Intune NDES Connector Setup Wizard Ended Prematurely

Microsoft Intune NDES Connector Setup Wizard Ended Prematurely A Windows Server with the Network Device Enrollment Service (NDES) role can be provisioned on-premises to support certificate deployment for non-domain Windows 10 Always On VPN clients. In addition, the Microsoft Intune Connector must be installed and configured on the NDES server to allow Intune-managed clients to request and receive certificates from the on-premises Certification Authority (CA) server.

Setup Wizard Ended Prematurely

When installing the Microsoft Intune Connector, the administrator may encounter a scenario where the setup wizard fails with the following error message.

“Microsoft Intune Connector Setup Wizard ended prematurely because of an error. Your system has not been modified. To install this program at a later time, run Setup Wizard again. Click the Finish button to exit the Setup Wizard.”

Microsoft Intune NDES Connector Setup Wizard Ended Prematurely

Cryptographic Service Provider

This error can occur if the NDES server certificate template is configured to use the Key Storage Provider cryptography service provider (CSP). When configuring the certificate template for the NDES server, the Legacy Cryptography Service Provider must be used, as shown here.

Microsoft Intune NDES Connector Setup Wizard Ended Prematurely

Additional Information

Deploying Windows 10 Always On VPN with Intune using Custom ProfileXML

Windows 10 Always On VPN Device Tunnel Configuration using Microsoft Intune

Deploying Windows 10 Always On VPN with Microsoft Intune

6 Comments

by Richard M. Hicks on November 11, 2019 • Permalink

Posted by Richard M. Hicks on November 11, 2019

https://directaccess.richardhicks.com/2019/11/11/microsoft-intune-ndes-connector-setup-wizard-ended-prematurely/

Search for:
DirectAccess Book

DirectAccess Book

Available Now!
NetMotion Mobility

DirectAccess-like Remote Access for Windows, Mac, iPhone, iPad, and Android

Learn More!
Kemp Technologies

Modern Application Delivery

Download a free trial!
Recent Posts
Always On VPN Resources
DirectAccess Resources

Richard M. Hicks Consulting, Inc.

Consulting

Connect

Mailing List

@richardhicks

Facebook

RSS Feed

Archives

Categories

Tag Cloud

All posts in category Network Device Enrollment Service

Microsoft Intune NDES Connector Error 0x80004003

Connection Status Error

IE Enhanced Security Configuration

Additional Configuration

Share this:

Like this:

Microsoft Intune NDES Connector Setup Wizard Ended Prematurely

Setup Wizard Ended Prematurely

Cryptographic Service Provider

Additional Information

Share this:

Like this:

DirectAccess Book

NetMotion Mobility

Kemp Technologies

Recent Posts

Always On VPN Resources

DirectAccess Resources