Popular content
Today's:
All time:
Recent comments
- I know this may be an old 1 month 6 days ago
- Thanks Phileddies, your tip 1 month 3 weeks ago
- Somehow I managed to associat 2 months 1 week ago
- Will one brother Thanks a lot 2 months 2 weeks ago
- These work great and I"m 2 months 3 weeks ago
- Phil, looks like you beat 2 months 4 weeks ago
- Very nice script, I found it 3 months 2 weeks ago
- My brother suggested I might 3 months 3 weeks ago
- Hi there to every body, it's 3 months 3 weeks ago
- Just a point to note, I had 3 months 3 weeks ago
Who's online
There are currently 0 users online.
Comments
You rule. Thanks.
No probs, just glad I could help
hi!
we're experiencing this error left and right on our more than 1000 xp machines
and the kb article is askin' me to do it all manually
when you said you execute the command %SystemRoot%\System32\proxycfg.exe -u how if i may, step-by-step if you don't mind?
thanks in advance
>oliver
Sorry for the delay in replying.
The proxcfg tool simple updates the below reg key with the desired proxy settings.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\WinHttpSettings
However the problem is by default normal users do not have permission to update this key, the solution I personally used to was to use an Active Directory policy to modify the permissions of the registry key using these instructions I then added the below command into our logon script which at the time was a simple batch file.
%SystemRoot%\System32\proxycfg.exe –u
Do you have an Active directory domain and do you apply a logon script to your users? If not there are several other options we can explore.
If your logon script is a VBS file I can post the desired syntax if needed?
Ultimately the goal is to run %SystemRoot%\System32\proxycfg.exe –u with admin rights on all the effected computers, or modify the permissions on the reg key so users can run the command their self.
Just as a side note as I have not looked into it a great deal yet, I have found that the proxcfg with the –u switch does not seem to work if you are running IE8 instead I have started running proxcfg –p proxy_server_ip
i found a better way to deal with this
ordinary users are power users
so proxycfg - works out of the bat
did the proxycfg -u
in gpo you can do preferences this time
under computer configuration/preferences/windows settins/registry
did a wizard, pointed to that computer where i did the proxycfg -u (basically copied the registry of that machine)
viola push it via gpo and i'm one happy camper
thank you very much for pulling this proxycfg
the crypt32 error was filling up the logs and pushing down the good logs on our xp and 2k3 machines
thanks again
>oliver
Glad to hear you got it sorted.
I followed your advice and used the %SystemRoot%\System32\proxycfg.exe -u switch.
Then I read about using proxcfg –p proxy_server_ip for IE8.
Question I have, how do I undo the importing of IE settings, if I wish to?
Thank you!
Hi screeno thanks for the comment.
The default setting for proxycfg is no proxy server / direct out, so if by undo you mean put things back to the deafult settings to issue a %SystemRoot%\System32\proxycfg.exe -d
Command Line Parameters
The following table lists the command line parameters available for use with the ProxyCfg.exe tool.
Parameter Description
none When no parameters are specified, the current WinHTTP proxy settings are displayed.
? Help information is displayed.
d Specifies that WinHTTP applications access the network directly, without a proxy.
p Specifies the proxy server. You can also specify an optional list of servers that are accessed without a proxy.
u Specifies that WinHTTP applications use the current user's proxy settings for Internet Explorer. This parameter does not work if Internet Explorer is automatically detecting proxy settings, or if it is using an automatic configuration URL to set the proxy information.
i Specifies that WinHTTP applications use the current user's proxy settings for Internet Explorer. This only works when ProxyCfg.exe was not previously used. If ProxyCfg.exe is installed, specify that the "u" command line parameter use the manual settings. This parameter does not work if Internet Explorer automatically detects proxy settings, or if it uses an automatic configuration URL to set the proxy information.
What is this message is appearing in the Event Viewer of a standalone system (minus the proxy)? It would seem that the same root certificate issue may not apply equally. Any thoughts?
The message is caused because Crypt32 on the effected computer(s) is unable to connect to the Internet, generally this is because there is a proxy or a Firewall in the way but if the computer is standalone i.e. not connected to the Internet I would imagine you will get the same Crypt32 error.
thanks for the help!
No problem, glad it helped
Hi everyone!
I have this error in my event viewer and I have a proxy on my net but I can't understand why appears this message because I haver an internal WSUS configured and the machine that has this problem has configured correctly to update to internal WSUS.
Anyone can help me?
Thank you
Hi,
This exact message has nothing to do with WSUS the message is generated because the crypt32 is unable to get to on the Internet to perform it's certificate update. The Windows Update on the client however does use proxycfg.exe -u
Crypt32 does not use Internet Explorers proxy settings and instead uses the proxy setting configured with the tool %SystemRoot%\System32\proxycfg.exe
Running the command %SystemRoot%\System32\proxycfg.exe -u on the effected computer(s) will import the Internet Explorer proxy setting so crypt32 can get on the net.
The other option is to put a hole in your firewall.
I hope this helps, let me know if you need any more info.
Glad you found it of use, thanks for the heads up corrected the post
I putting your WSUS server into proxycfg will not work but you can turn off the feature.
To turn off the Update Root Certificates component.
To turn off the Update Root Certificates component, follow these steps:
In Control Panel, double-click Add/Remove Programs.
Click Add/Remove Windows Components.
Click to clear the Update Root Certificates check box, and then continue with the Windows Components Wizard.
Or, by using a GPO turn off the option.
Computer Configuration – Administrative Templates – System – Internet Communication Settings
"Turn off Automatic Root Certificates Update”
but consider the problems by not updating your CA's
Add new comment