Error: 'Failed to sign package; error was: 2148081670' when Publishing Updates
Symptom
- When using the Configuration Checker to validate the settings, an error is returned:
OR - When publishing updates, the AutoPublish.log will show:
'Failed to sign package; error was: 2148081670'
Solution
The error code resolves to 'No provider was specified for the store or object.' There are 2 ways to resolve this error.
First make sure there is only one Code Signing certificate imported into the WSUS > Certificates store on the WSUS server:
- In the Configuration Manager console, navigate to the Software Library workspace.
- Navigate to Software Updates > Lenovo Patch > Updates.
- Click the Settings button on the ribbon bar.
- In the Lenovo Patch Settings dialog, click the WSUS Server tab.
- In the Current certificate subsection of the WSUS signing certificate section, click the View Certificate button.
- In the Certificate window, click on the Details tab.
- Scroll to the bottom of the list and obtain the Thumbprint value.
- On the WSUS server, open CERTLM.msc.
- Navigate to WSUS > Certificates.
- Review all certificates with the Intended Purposes of Code Signing.
- Remove any other Code Signing certificates from the WSUS > Certificates store where the Thumbprint value does not match the thumbprint value from step 7. Leave only the one Code Signing certificate with a matching Thumbprint value from step 7.
Next, make sure that the certificate file imported into the WSUS > Certificates contains the private key. The private key can be provided through a .PFX file, not a .CER file.
- On the WSUS server, open CERTLM.msc.
- Navigate to WSUS > Certificates.
- On the Code Signing certificate in the WSUS > Certificates store, review the icon in the "Issued To" field. Verify that the Icon has a key on the left side, ex:
- For further review, open the Code Signing certificate to the General tab and, below the “Valid from MM/DD/YYYY to MM/DD/YYYY” line, verify there is a key icon similar to the one on the icon above and a message stating “You have a private key that corresponds to this certificate.”
If the key is not present on the icon and the key and message are not present in the certificate on the General tab, the .cer file was manually placed in the WSUS > Certificates store. - Obtain a copy of the code signing certificate in a .PFX file that includes the private key. The .PFX file should be password protected. Import into Lenovo Patch through the Settings > WSUS Server tab, using the Import button. Enter the password when prompted.
Related Articles
Error: 'Failed to sign package; error was: 2148204810' when Publishing Updates
Symptom When publishing updates, the AutoPublish.log and Lenovo Patch.log file will show the following: Error on check 'The WSUS signing certificate is not expired.' : Valid from 2019-01-01 to 2020-01-01 Error on check 'WSUS signing certificate is in ...Error: CreateDirectory Failed During Configuration Checker Verification or Publishing Updates
Symptom When using the Configuration Checker to verify the installation and configuration or attempting to Publish Updates, a CreateDirectory failed error may occur. Cause The permissions are incorrect on one or more of the following locations: NTFS ...Error: 0x800B0109 - Updates not installing
Symptom After publishing updates from the Lenovo Patch plugin and deploying the updates using Configuration Manager, the client computer fails to install updates and receives an error on installation: 0x800B0109(-2146762487). The error is found in ...Failed to retrieve updates from the specified WSUS server: The operation has timed out
Symptom When opening the Lenovo Patch plugin, the catalog fails to load and shows a "Loading" prompt, which eventually times out. In the Lenovo Patch.log file, the following error message is captured: Failed to retrieve updates from the specified ...FileZilla Patching Updates
Symptom Updates for FileZilla are not downloaded by Lenovo Patch when selected to be published. Solution Customers who have tried to patch FileZilla may have noticed that updates for FileZilla are not being downloaded by Lenovo Patch. Changes from ...