Return Mail--Invalid TAO ID(s)

Similar Messages

• 1000's of Returned Mail messages every day!

  Hi All,
  I am receiving thousands of Returned Mail and Undeliverable Mail messages every day in my Mail application.
  Here is the problem description:
  I used to have a MobileMe (.mac) account and a corresponding email address.  I did not renew my MobileMe account this year.  Now, whenever Mail receives any valid message to my existing RoadRunner email address, that same message is being automatically resent to the defunct .mac email address and since it is no longer a valid address, it is being returned to my inbox as Undeliverable or Returned.  The same message is being resent apparently many many times for each valid message I receive in my inbox.  The result is literally thousands of undeliverable email messages clogging my account.  Each time it is resent, it copies all the headers and the original message so by the time the same message is received over and over again the message sizes are well over 2 MB in size!  It is an endless repeating cycle.
  What I have done so far:
  Called RoadRunner - they said to delete and reinstall Mail
  Deleted Mail and reinstalled
  Deleted Mail preferences
  Turned off all iSync functions
  Searched for and deleted all references to the invalid .mac email address on my computer
  Turned off all notifications from iCal
  Upgraded OS from 10.5.x to 10.6.7
  None of this has stopped the torrents of messages…PLEASE HELP.
  Would not like to have to erase the hard drive and reinstall the OS from scratch if possible.
  Here is what a typical returned message header looks like (Email address blocked out by me):
  This message was created automatically by the mail system (ecelerity).
  A message that you sent could not be delivered to one or more of its
  recipients. This is a permanent error. The following address(es) failed:
  [email protected] (after RCPT TO): 550 5.1.1 unknown or illegal alias: [email protected]
  Reporting-MTA: dns; hrndva-oedge04.mail.rr.com
  Arrival-Date: Thu, 28 Apr 2011 13:25:39 +0000
  Remote-MTA: dns; nk11b01-smtp-mx006.mac.com
  Diagnostic-Code: smtp; 550 5.1.1 unknown or illegal alias: [email protected]
  Last-Attempt-Date: Thu, 28 Apr 2011 13:25:39 +0000
  Action: failed
  Final-Recipient: rfc822; [email protected]
  Status: 5.1.1
  ------ This is a copy of the original message, including all headers. ------
  Return-Path: <[email protected]>
  X-Authority-Analysis: v=1.1 cv=pN6kzQkhXdmdOr6Akjoh3kGBD/S3UyPMKQp53EJY+ro= c=1 sm=0 a=9Xqw66NJkoB9GertGQDpPQ==:17 a=n-kJSqksAAAA:8 a=nz4EaHi66Edgnas9-7sA:9 a=98jSFH7WqmUA:10 a=ayC55rCoAAAA:8 a=qyzg_sS0DHm6ZXvf9RAA:9 a=udDd3TAlAAAA:8 a=A-Ay9Xv3AAAA:8 a=13-m3CVyAAAA:8 a=Nq7WNfEEaPaVeQek9H8A:9 a=nCRpLGje-JdQZUhY4UwA:7 a=xKgkma0IJD8A:10 a=pdFTHh6Ffp0A:10 a=uqRLPZCTzCUA:10 a=60GRva4_FlB0_GV7:21 a=0a-loXuVl3_jPVwJ:21 a=9Xqw66NJkoB9GertGQDpPQ==:117
  X-Cloudmark-Score: 0
  X-Originating-IP: 50.90.215.242
  From: <[email protected]>
  Received: from [50.90.215.242] ([50.90.215.242:47870] helo=[10.0.1.4])
      by hrndva-oedge04.mail.rr.com (envelope-from <[email protected]>)
      (ecelerity 2.2.3.46 r()) with ESMTP
      id 73/88-28036-3CA69BD4; Thu, 28 Apr 2011 13:25:24 +0000
  Content-Type: multipart/report; report-type=delivery-status; boundary="lvFcVbMq4Bmrb7Nos44Q+yDizFUn+uvxvchPCg=="
  X-Mailer: Apple Mail (2.1084)
  Date: Thu, 28 Apr 2011 13:24:24 +0000
  Subject: Mail Delivery Failure
  Resent-Date: Thu, 28 Apr 2011 09:25:23 -0400
  Resent-From: Joe Blow <[email protected]>
  To: [email protected]
  Resent-To: [email protected]
  Message-Id: <[email protected]>
  --lvFcVbMq4Bmrb7Nos44Q+yDizFUn+uvxvchPCg==
  Content-Type: text/plain
  This message was created automatically by the mail system (ecelerity).
  A message that you sent could not be delivered to one or more of its
  recipients. This is a permanent error. The following address(es) failed:
  [email protected] (after RCPT TO): 550 5.1.1 unknown or illegal alias: [email protected]
  THANK YOU FOR READING AND HELPING IF YOU CAN.
  Bern

  Are the returned messages showing all different recipients? If so, it's possible someone has hacked into your MobileMe account and is using it to send out spam.
  A brute force spamming will result in thousands of failed return messages. That happens when a spammer sends out mail to a know mail server, such as Hot Mail. They'll send the same message to [email protected], [email protected], etc. Do this for thousands of addresses and many will be returned by the receiving server as undeliverable because there is no user on their system by [email protected], and any other address with no match.
  Or, your address is simply being spoofed by a prolific spammer. They picked up your email address as a valid address and are spoofing it in the From field. Doesn't matter that the thousands of emails that went out from them with your name as the sender didn't come from you, the receiving server just assumes it did and you get the bounce messages.
  For the first, go in and change your password and see if that stops the flow. For the latter, there's really nothing you can do. Spammers will only use someone's address for a short while. Otherwise, the "from" address gets blacklisted automatically by mail servers, which would cut off the spammer's ability to send out more crap in your name. Then it's someone else who has to put up with it for a few days.

• Returned mail

  I am getting mail returned for no apparent reason, other than they always appear to be sent to msn.com addresses. One of the addresses was actually sent to msn.com but returned as hotmail.com (??). There were several other email addresses (aol, comcast, .mac) that were delivered fine. Here is the text of the returned mail:
  ----- The following addresses had permanent fatal errors -----
  <[email protected]>
  (reason: 550 SC-001 Mail rejected by Windows Live Hotmail for policy reasons. Reasons for rejection may be re...l/network admins, please visit http://postmaster.live.com for email delivery information and support)
  <[email protected]>
  (reason: 550 SC-001 Mail rejected by Windows Live Hotmail for policy reasons. Reasons for rejection may be re...l/network admins, please visit http://postmaster.live.com for email delivery information and support)
  <[email protected]>
  (reason: 550 SC-001 Mail rejected by Windows Live Hotmail for policy reasons. Reasons for rejection may be re...l/network admins, please visit http://postmaster.live.com for email delivery information and support)
  ----- Transcript of session follows -----
  ... while talking to mx1.hotmail.com.:
  MAIL From:<[email protected]> SIZE=12281
  <<< 550 SC-001 Mail rejected by Windows Live Hotmail for policy reasons. Reasons for rejection may be related to content with spam-like characteristics or IP/domain reputation problems. If you are not an email/network admin please contact your E-mail/Internet Service Provider for help. Email/network admins, please visit http://postmaster.live.com for email delivery information and support
  554 5.0.0 Service unavailable
  What gives? Thanks.

  Hi, just came to the boards to see if I could get help as I have inexplicably begun having this exact same issue with one msn.com email I correspond with frequently (a good friend). Up to now, no issues. It's a good friend and we email back and forth frequently.
  Did you ever get resolution?
  Strange for me is I sent an email just this a.m., had just gotten a response this eve and replied back to get the bounceback message as you quote. I wonder if my friend didn't somehow unknowingly invoke settings? Hard to imagine, but I don't know msn.com . Thanks

• IOS Mobile Device Management - The SCEP server returned an invalid response

  I am in the process of writing an open source iOS mobile device management module in Java. For this I am referring the Apple provided Ruby code at [1]. I have set this up and it works fine for me. Now I need to convert this code to Java. So far I have accomplished to do that up to PKIOperation. In the PKI operation I get "The SCEP server returned an invalid response" which I believe is due to wrong response I sent to device upon PKIOperation.
  However when I do search on the internet I get this is something to do with the "maxHttpHeaderSize" as I am using the server as Apache Tomcat. Although I increase that since still it does not get resolved.
  Here is the code I need to convert - taken from Apple provided Ruby script
  if query['operation'] == "PKIOperation"
      p7sign = OpenSSL::PKCS7::PKCS7.new(req.body)
      store = OpenSSL::X509::Store.new
      p7sign.verify(nil, store, nil, OpenSSL::PKCS7::NOVERIFY)
      signers = p7sign.signers
      p7enc = OpenSSL::PKCS7::PKCS7.new(p7sign.data)
      csr = p7enc.decrypt(@@ra_key, @@ra_cert)
      cert = issueCert(csr, 1)
      degenerate_pkcs7 = OpenSSL::PKCS7::PKCS7.new()
      degenerate_pkcs7.type="signed"
      degenerate_pkcs7.certificates=[cert]
      enc_cert = OpenSSL::PKCS7.encrypt(p7sign.certificates, degenerate_pkcs7.to_der,
          OpenSSL::Cipher::Cipher::new("des-ede3-cbc"), OpenSSL::PKCS7::BINARY)
      reply = OpenSSL::PKCS7.sign(@@ra_cert, @@ra_key, enc_cert.to_der, [], OpenSSL::PKCS7::BINARY)
      res['Content-Type'] = "application/x-pki-message"
      res.body = reply.to_der
  end
  So this is how I written this in Java using Bouncycastle library.
  X509Certificate generatedCertificate = generateCertificateFromCSR(
                  privateKeyCA, certRequest, certCA.getIssuerX500Principal()
                          .getName());
          CMSTypedData msg = new CMSProcessableByteArray(
                  generatedCertificate.getEncoded());
          CMSEnvelopedDataGenerator edGen = new CMSEnvelopedDataGenerator();
          edGen.addRecipientInfoGenerator(new JceKeyTransRecipientInfoGenerator(
                  receivedCert).setProvider(AppConfigurations.PROVIDER));
          CMSEnvelopedData envelopedData = edGen
                  .generate(
                          msg,
                          new JceCMSContentEncryptorBuilder(
                                  CMSAlgorithm.DES_EDE3_CBC).setProvider(
                                  AppConfigurations.PROVIDER).build());
          CMSSignedDataGenerator gen = new CMSSignedDataGenerator();
          ContentSigner sha1Signer = new JcaContentSignerBuilder(
                  AppConfigurations.SIGNATUREALGO).setProvider(
                  AppConfigurations.PROVIDER).build(privateKeyRA);
          List<X509Certificate> certList = new ArrayList<X509Certificate>();
          CMSTypedData cmsByteArray = new CMSProcessableByteArray(
                  envelopedData.getEncoded());
          certList.add(certRA);
          Store certs = new JcaCertStore(certList);
          gen.addSignerInfoGenerator(new JcaSignerInfoGeneratorBuilder(
                  new JcaDigestCalculatorProviderBuilder().setProvider(
                          AppConfigurations.PROVIDER).build()).build(
                  sha1Signer, certRA));
          gen.addCertificates(certs);
          CMSSignedData sigData = gen.generate(cmsByteArray, true);
          return sigData.getEncoded();
  The returned result here will be output in to the servlet output stream with the content type "application/x-pki-message".
  It seems I get the CSR properly and I generate the X509Certificate using following code.
  public static X509Certificate generateCertificateFromCSR(
          PrivateKey privateKey, PKCS10CertificationRequest request,
          String issueSubject) throws Exception {
      Calendar targetDate1 = Calendar.getInstance();
      targetDate1.setTime(new Date());
      targetDate1.add(Calendar.DAY_OF_MONTH, -1);
      Calendar targetDate2 = Calendar.getInstance();
      targetDate2.setTime(new Date());
      targetDate2.add(Calendar.YEAR, 2);
      // yesterday
      Date validityBeginDate = targetDate1.getTime();
      // in 2 years
      Date validityEndDate = targetDate2.getTime();
      X509v3CertificateBuilder certGen = new X509v3CertificateBuilder(
              new X500Name(issueSubject), BigInteger.valueOf(System
                      .currentTimeMillis()), validityBeginDate,
              validityEndDate, request.getSubject(),
              request.getSubjectPublicKeyInfo());
      certGen.addExtension(X509Extension.keyUsage, true, new KeyUsage(
              KeyUsage.digitalSignature | KeyUsage.keyEncipherment));
      ContentSigner sigGen = new JcaContentSignerBuilder(
              AppConfigurations.SHA256_RSA).setProvider(
              AppConfigurations.PROVIDER).build(privateKey);
      X509Certificate issuedCert = new JcaX509CertificateConverter()
              .setProvider(AppConfigurations.PROVIDER).getCertificate(
                      certGen.build(sigGen));
      return issuedCert;
  The generated certificate commonn name is,
  Common Name: mdm(88094024-2372-4c9f-9c87-fa814011c525)
  Issuer: mycompany Root CA (93a7d1a0-130b-42b8-bbd6-728f7c1837cf), None
  [1] - https://developer.apple.com/library/ios/documentation/NetworkingInternet/Concept ual/iPhoneOTAConfiguration/Introduction/Introduction.html

  I am in the process of writing an open source iOS mobile device management module in Java. For this I am referring the Apple provided Ruby code at [1]. I have set this up and it works fine for me. Now I need to convert this code to Java. So far I have accomplished to do that up to PKIOperation. In the PKI operation I get "The SCEP server returned an invalid response" which I believe is due to wrong response I sent to device upon PKIOperation.
  However when I do search on the internet I get this is something to do with the "maxHttpHeaderSize" as I am using the server as Apache Tomcat. Although I increase that since still it does not get resolved.
  Here is the code I need to convert - taken from Apple provided Ruby script
  if query['operation'] == "PKIOperation"
      p7sign = OpenSSL::PKCS7::PKCS7.new(req.body)
      store = OpenSSL::X509::Store.new
      p7sign.verify(nil, store, nil, OpenSSL::PKCS7::NOVERIFY)
      signers = p7sign.signers
      p7enc = OpenSSL::PKCS7::PKCS7.new(p7sign.data)
      csr = p7enc.decrypt(@@ra_key, @@ra_cert)
      cert = issueCert(csr, 1)
      degenerate_pkcs7 = OpenSSL::PKCS7::PKCS7.new()
      degenerate_pkcs7.type="signed"
      degenerate_pkcs7.certificates=[cert]
      enc_cert = OpenSSL::PKCS7.encrypt(p7sign.certificates, degenerate_pkcs7.to_der,
          OpenSSL::Cipher::Cipher::new("des-ede3-cbc"), OpenSSL::PKCS7::BINARY)
      reply = OpenSSL::PKCS7.sign(@@ra_cert, @@ra_key, enc_cert.to_der, [], OpenSSL::PKCS7::BINARY)
      res['Content-Type'] = "application/x-pki-message"
      res.body = reply.to_der
  end
  So this is how I written this in Java using Bouncycastle library.
  X509Certificate generatedCertificate = generateCertificateFromCSR(
                  privateKeyCA, certRequest, certCA.getIssuerX500Principal()
                          .getName());
          CMSTypedData msg = new CMSProcessableByteArray(
                  generatedCertificate.getEncoded());
          CMSEnvelopedDataGenerator edGen = new CMSEnvelopedDataGenerator();
          edGen.addRecipientInfoGenerator(new JceKeyTransRecipientInfoGenerator(
                  receivedCert).setProvider(AppConfigurations.PROVIDER));
          CMSEnvelopedData envelopedData = edGen
                  .generate(
                          msg,
                          new JceCMSContentEncryptorBuilder(
                                  CMSAlgorithm.DES_EDE3_CBC).setProvider(
                                  AppConfigurations.PROVIDER).build());
          CMSSignedDataGenerator gen = new CMSSignedDataGenerator();
          ContentSigner sha1Signer = new JcaContentSignerBuilder(
                  AppConfigurations.SIGNATUREALGO).setProvider(
                  AppConfigurations.PROVIDER).build(privateKeyRA);
          List<X509Certificate> certList = new ArrayList<X509Certificate>();
          CMSTypedData cmsByteArray = new CMSProcessableByteArray(
                  envelopedData.getEncoded());
          certList.add(certRA);
          Store certs = new JcaCertStore(certList);
          gen.addSignerInfoGenerator(new JcaSignerInfoGeneratorBuilder(
                  new JcaDigestCalculatorProviderBuilder().setProvider(
                          AppConfigurations.PROVIDER).build()).build(
                  sha1Signer, certRA));
          gen.addCertificates(certs);
          CMSSignedData sigData = gen.generate(cmsByteArray, true);
          return sigData.getEncoded();
  The returned result here will be output in to the servlet output stream with the content type "application/x-pki-message".
  It seems I get the CSR properly and I generate the X509Certificate using following code.
  public static X509Certificate generateCertificateFromCSR(
          PrivateKey privateKey, PKCS10CertificationRequest request,
          String issueSubject) throws Exception {
      Calendar targetDate1 = Calendar.getInstance();
      targetDate1.setTime(new Date());
      targetDate1.add(Calendar.DAY_OF_MONTH, -1);
      Calendar targetDate2 = Calendar.getInstance();
      targetDate2.setTime(new Date());
      targetDate2.add(Calendar.YEAR, 2);
      // yesterday
      Date validityBeginDate = targetDate1.getTime();
      // in 2 years
      Date validityEndDate = targetDate2.getTime();
      X509v3CertificateBuilder certGen = new X509v3CertificateBuilder(
              new X500Name(issueSubject), BigInteger.valueOf(System
                      .currentTimeMillis()), validityBeginDate,
              validityEndDate, request.getSubject(),
              request.getSubjectPublicKeyInfo());
      certGen.addExtension(X509Extension.keyUsage, true, new KeyUsage(
              KeyUsage.digitalSignature | KeyUsage.keyEncipherment));
      ContentSigner sigGen = new JcaContentSignerBuilder(
              AppConfigurations.SHA256_RSA).setProvider(
              AppConfigurations.PROVIDER).build(privateKey);
      X509Certificate issuedCert = new JcaX509CertificateConverter()
              .setProvider(AppConfigurations.PROVIDER).getCertificate(
                      certGen.build(sigGen));
      return issuedCert;
  The generated certificate commonn name is,
  Common Name: mdm(88094024-2372-4c9f-9c87-fa814011c525)
  Issuer: mycompany Root CA (93a7d1a0-130b-42b8-bbd6-728f7c1837cf), None
  [1] - https://developer.apple.com/library/ios/documentation/NetworkingInternet/Concept ual/iPhoneOTAConfiguration/Introduction/Introduction.html

• Getting returned mail messages for emails I did not send

  I've recently started getting returned mail messages for emails I did not send. Why is this happening and how can I stop it?

  cadillacjoe69 wrote:
  That might be tough to do. Is there a rule I can use to help. The mail messages are so varied.
  I'd look at the headers (View -> Message -> Long Headers) to see if there's anything in common, then try to create a rule based on that.
  By the way, welcome to Apple's discussion groups.

• "Returned mail: Message failed to pass through virus scanner"

  We have a large number of this mail (see below) on our OCS1 cause by virus like MyDoom:
  From: "Mail Delivery Subsystem" <[email protected]>
  To: [email protected]
  Mime-Version: 1.0
  Content-Type: multipart/report;
       report-type=delivery-status; BOUNDARY="----ORCL_ES6_BOUNCE_1095724----"
  Date: Fri, 22 Oct 2004 09:52:32 +0200
  Subject: Returned mail: Message failed to pass through virus scanner
  ------ORCL_ES6_BOUNCE_1095724----
  Content-Type: text/plain
  The original message was received at Fri, 22 Oct 2004 09:51:21 +0200
  from <[email protected]>
  ----- The following addresses had delivery problems -----
  <[email protected]> (unrecoverable error)
  ----- Transcript of session follows -----
  Message failed to pass through virus scanner
  ------ORCL_ES6_BOUNCE_1095724----
  content-type: message/delivery-status
  Reporting-MTA: dns; maildb.italtbs.com
  Final-Recipient: rfc822;[email protected]
  Action: failed
  Status: 5.7.7
  Diagnostic-Code: smtp; Message failed to pass through virus scanner
  ------ORCL_ES6_BOUNCE_1095724----
  Content-Type: message/rfc822
  Return-Path: <[email protected]>
  Received: from mailas.italtbs.com by maildb.italtbs.com
       with ESMTP id 10957241098431481; Fri, 22 Oct 2004 09:51:21 +0200
  Received: from italtbs.com
       by mailas.italtbs.com with SMTP id i9M7pJJ06571
       for <[email protected]>; Fri, 22 Oct 2004 09:51:19 +0200
  Message-Id: <[email protected]>
  From: [email protected]
  To: [email protected]
  Subject: Found
  Date: Fri, 22 Oct 2004 09:50:40 +0200
  MIME-Version: 1.0
  Content-Type: multipart/mixed;
       boundary="----=_NextPart_000_0007_0000355F.0000439E"
  X-Priority: 3
  X-MSMail-Priority: Normal
  ------ORCL_ES6_BOUNCE_1095724------
  On MAILAS.italtbs.com are installed infrastructure, sendmail and Symantec Scan Engine.
  On MAILDB.italtbs.com are installed storage database and midtier.
  Can I stop this useless messagges?
  Thanks and regard
  Matteo

  Are you still unable to send email?  What client are you using?  Do you see your job represented on ePrintCenter?
  Although I am an HP employee, I am speaking for myself and not for HP

• Returned mail messages since ios4 upgrade

  Hello!
  If this has been answered before, I apologize, but I can't find anything on this particular issue. Since my upgrade to iOS4 (I have a 3G 8g iPhone), I have been getting returned mail messages in my AOL inbox from addresses that I have not sent mail to. I have read mail from these places, but not Sent mail. Just last night my aunt sent me a few emails, and said she was getting weird emails back with number codes in them. Does this new upgrade send some type of automatic receipt once you read an email? Is there a way to turn that off? I can't find any info on this at all. Anyone else experiencing this?
  Thanks!!!

  Well, I haven't figured out how it happened, because I only use my phone to check my mail anymore, but somehow my AOL away message was turned on and spam info (pharmacy info) was entered in the data box. So every email that was sent to me received this info back over the last 2 days. I have since turned off the away message, but don't know how it was activated to begin with. I guess it was more an AOL/SPAM issue than having to do with the upgrade....I hope.

• Returned mail I never sent

  I keep getting returned mail from all over the world which I never sent. It seems someone is using my email to send mail. These sent messages do not show up on my computer or mail until they are returned. How can I stop this?

  ajaamy, welcome to Apple Discussions.
  Your email address got hijacked, via malware, from a Windows PC that had your address in its mail application. Then the person, usually a spammer, that hijacked your address used it to send out spam. Since the spam message was sent to a large numnber of other addresses, some of these addresses are no longer valid. Therefore you got the returned mail error message. Just ignore it. Many of us get these messages. Don't worry, since there are no known malware that affect Macs like this.
   Cheers, Tom

• Returned Mail: See Transcript for details

  If someone from the outside world send an email to a non-exisitant email address at my domain, an NDR is sent out with an attachment named "Returned Mail: See Transcript for details".  This transcript includes the IP of my frontend Exchange server.  Is there anyway to block this information from being included in the transcript?

  Hi There,
  You can install the Anti-Spam agent on your HUB server and enable recipient filtering and configure Exchange to reject messages to non AD users.
  See link below for step by step guide.
  http://technet.microsoft.com/en-us/library/bb201691(v=exchg.80).aspx
  Exchange Blog:
  www.ntweekly.com
  MCSA, MCSE, MCITP:SA, MCITP:EA, MCITP:Enterprise Messaging Administrator 2010,MCTS:Virtualization

• Sender e-mail Invalid

  I continue to get "Sender E-mail Invalid" when trying to send or forward messages. I have read some of the discussions but have not seen a clear cut answer or resolution. Can someone please provide a solution.

  I have this issue due to using Roadrunner email. Roadrunner's SMTP server will only work when on their network. Perhaps your situation is similar.
  I've tried just about everything and the best solution I've come up with is to go into email account settings and TURN OFF the Primary SMTP server (Roadrunner) when NOT on my home WiFi. By doing so, the AT&T SMTP server [cwmx.com] will then be used to send email (just need to be sure it is listed under "Other SMTP Servers"). Then when using my home WiFi again, I must go into settings and turn the Primary SMTP server (Roadrunner) ON.
  It's a little cumbersome and I would welcome a better method, although I should probably just migrate to a more iPhone-friendly email system.

• DiscoverSQL2005DBEngineDiscovery.vbs : The Query 'select * from __NAMESPACE where Name ='ComputerManagement'' returned an invalid result set.

  hi
  I am keep receiving this message in central administration running server in event viewer
  DiscoverSQL2005DBEngineDiscovery.vbs : The Query 'select * from __NAMESPACE where Name ='ComputerManagement'' returned an invalid result set.  Please check to see if this is a valid WMI Query.. Object required
  adil

  Hi adil,
  It seems to be not related to SharePoint issue, I find a similar error post from Operations Manager forum you can take a look
  Also another below article of basic troubleshooting of discovery scripts for your reference.
  And for the further better assistance regarding this issue, you may want to post Operations Manager forum here.
  http://social.technet.microsoft.com/Forums/systemcenter/en-US/21e9de85-5cbc-4217-8d9b-921e13dc88dc/sql-mp-issues-with-discovery-vbs-scripts?forum=operationsmanagermgmtpacks
  http://blogs.technet.com/b/kevinholman/archive/2010/03/09/basic-troubleshooting-of-discovery-scripts.aspx
  Thanks
  Daniel Yang
  TechNet Community Support

• ISE BYOD Microsoft SCEP NDES 802.1x The SCEP server returned an invalid response

  Hello, 
  Using ISE 1.2 with WLC and on-boarding with single SSID.  On occasion the error 'The SCEP server returned an invalid response' is received on the IPHONE being on-boarded - this is intermittent.   The issue resolves itself in time.  Any ideas on troubleshooting?  tnks

  On the NDES server regedit EnforcePassword = 0 and still having issues.  
  This has been done as well;
  It is possible for ISE to generate URLs that are too long for the IIS web server. In order to avoid this problem, the default IIS configuration can be modified to allow for longer URLs. Enter this command from the NDES server CLI:
  %systemroot%\system32\inetsrv\appcmd.exe set config /section:system.webServer/
   security/requestFiltering /requestLimits.maxQueryString:"8192" /commit:apphost

• On verbose mode i get the next leyend, CSRUSHBBluetoothHCIcontroller: setupHardware super returned 0,  invalid node structure (4,14279), my bluetooth is doomed and so my macbook or just change it?

  end yes  i got the macbook summer 2006 still working and sharp, got this problem,
  CSRUSHBBluetoothHCIcontroller: setupHardware super returned 0,  invalid node structure (4,14279),
  and it shut down
  im thinking of open it up and check the bluetooth chip, or antenna, if something is not in place, or someone knows another way ?

  there is nothing out of place, i reinstall  mac os 10.6  and  i  run disk first aid, and it says my disk is ok,  still it turns off random

• The SCEP server returned an invalid response.

  Hello
  We are trying to enroll iPhone 3GS device with iOS 4.1 to be used with MDM. For SCEP server we use MSCEP in Windows Server 2008. We can't get over "Enrolling Certificate" step because it always fails with message "The SCEP server returned an invalid response.". How can we get more details? Analyzing captured HTTP stream revealed no issues.
  Thanks in advance for any help.
  frustrated Martin

  We are testing in LAN and have configured our router to translate some domains to our local IPs. Could this be a problem? In payloads there are no IP addresses but these local domains.
  It looks CA is issued the certificate, you might seen that from cert manger console. I don't see any obvious reason why cert got rejected by iPhone. (May be some one experts from apple can find from following dump) Anyway I suggest following option to you.
  1) try with http if you are using https
  2) install CA cert to phone and try again
  3) check time between server and phone
  4) try to change default scep issue template to issue 2048 key.
  5) double check finger print(in SCEP profile) you config with ca cert.
  Followings are SCEP PKI Message dump:
  PKCS7 Message:
  CMSG_SIGNED(2)
  CMSGSIGNED_DATA_PKCS_1_5VERSION(1)
  Content Type: 1.2.840.113549.1.7.1 PKCS 7 Data
  PKCS7 Message Content:
  ================ Begin Nesting Level 1 ================
  PKCS7 Message:
  CMSG_ENVELOPED(3)
  CMSGENVELOPED_DATA_PKCS_1_5VERSION(0)
  Content Type: 1.2.840.113549.1.7.1 PKCS 7 Data
  Content Encryption Algorithm:
  Algorithm ObjectId: 1.3.14.3.2.7 des
  Algorithm Parameters:
  04 08 ed 76 05 85 cc 10 e0 71
  04 08 ed 76 05 85 cc 10 e0 71
  PKCS7 Message Content:
  0000 30 00 6d 16 ce 8c 77 04 cd e4 e0 3d 33 9c 86 84 0.m...w....=3...
  0010 36 6c 1c 4c e7 32 b1 8b ae 12 74 1d 2b bf 5a 52 6l.L.2....t.+.ZR
  0020 3d e2 34 8c e7 e5 cf 98 35 a3 fa e7 47 da 7e eb =.4.....5...G.~.
  0030 02 dd 68 23 de 37 92 c6 91 3a 1e b5 1b 61 5f 98 ..h#.7...:...a_.
  0040 50 d3 27 de b5 bf 61 93 b7 ac 54 c9 c6 16 d0 8c P.'...a...T.....
  0050 89 2e 92 ba 6d 52 d7 de 80 98 ad 2d ce b0 5e 5a ....mR.....-..^Z
  0060 79 b4 e2 6f 7b c6 e6 13 4b b7 f4 81 f5 45 d8 3d y..o{...K....E.=
  0070 c7 29 7c ca 78 34 ff 47 dc d1 fc 21 8c aa 43 3a .)|.x4.G...!..C:
  0080 29 52 15 60 fb 37 54 46 aa a9 11 98 ef af b5 58 )R.`.7TF.......X
  0090 e0 21 4d 99 10 2b 00 b3 44 df d9 fa e3 df 98 5c .!M..+..D......\
  00a0 69 06 f9 92 5c d5 a3 32 97 ed 9c 1b 19 55 be 57 i...\..2.....U.W
  00b0 85 53 df 71 87 f1 8b 62 0e b8 f7 7d 6b 47 d4 99 .S.q...b...}kG..
  00c0 c0 47 f9 bb 7e 57 76 4f 55 a8 59 de b2 77 88 cc .G..~WvOU.Y..w..
  00d0 e5 a7 02 de af 44 3c fb ab b9 0d ee 87 78 66 a4 .....D<......xf.
  00e0 aa bc 5f 3b 90 56 90 2b c9 0f de 46 05 9c ed 9b .._;.V.+...F....
  00f0 b4 a1 64 f5 5e 57 a0 d5 75 46 da 35 1e 79 d9 79 ..d.^W..uF.5.y.y
  0100 1c a9 35 d1 12 47 7a de 99 d6 cc b8 a8 71 1c 72 ..5..Gz......q.r
  0110 f3 28 a0 1f 44 62 8d 17 23 c1 8e 2c a1 19 3d 57 .(..Db..#..,..=W
  0120 4b 12 ac 81 d2 14 6f da 67 47 25 32 05 1f 2b c3 K.....o.gG%2..+.
  0130 1d 7d 2c 97 95 1b ee 6e f2 b5 36 7f 69 ea f4 c0 .},....n..6.i...
  0140 b5 88 61 f7 26 db 44 13 6c ef da 8d 78 6c bd c3 ..a.&.D.l...xl..
  0150 6e 45 41 7b 79 d3 92 c8 5e fd b0 1d 9c 0e ea ee nEA{y...^.......
  0160 98 58 6b a8 5f c3 f4 90 16 87 9a 49 c6 99 9b fe .Xk._......I....
  0170 0c d8 0a 45 ce 4e 28 59 cf 43 b1 f9 c4 d5 3b e2 ...E.N(Y.C....;.
  0180 70 69 c8 ca 0e 16 2f ff 7a 3e 76 d6 dd 7e e9 86 pi..../.z>v..~..
  0190 13 a3 8b 66 f8 92 6e f1 84 9b 2d 8c 89 ab d7 3a ...f..n...-....:
  01a0 e9 ca 08 2a 68 76 ed f3 70 ac 52 e7 e6 7e b1 28 ...*hv..p.R..~.(
  01b0 9e 0b 5d 8b 09 54 a7 60 9b 7c 4b 0d 94 76 55 0e ..]..T.`.|K..vU.
  No Signer
  Recipient Count: 1
  Recipient Info[0]:
  CMSGKEY_TRANSRECIPIENT(1)
  CERTID_ISSUER_SERIALNUMBER(1)
  Serial Number: 61047aca000000000003
  Issuer:
  CN=WIN2008SCEP-CA
  No Certificates
  No CRLs
  ---------------- End Nesting Level 1 ----------------
  Signer Count: 1
  Signing Certificate Index: 0
  dwFlags = CAVERIFY_FLAGS_CONSOLETRACE (0x20000000)
  dwFlags = CAVERIFY_FLAGS_DUMPCHAIN (0x40000000)
  ChainFlags = CERTCHAIN_REVOCATION_CHECK_CHAIN_EXCLUDEROOT (0x40000000)
  HCCELOCALMACHINE
  CERTCHAIN_POLICYBASE
  -------- CERTCHAINCONTEXT --------
  ChainContext.dwInfoStatus = CERTTRUST_HAS_PREFERREDISSUER (0x100)
  ChainContext.dwErrorStatus = CERTTRUST_IS_UNTRUSTEDROOT (0x20)
  SimpleChain.dwInfoStatus = CERTTRUST_HAS_PREFERREDISSUER (0x100)
  SimpleChain.dwErrorStatus = CERTTRUST_IS_UNTRUSTEDROOT (0x20)
  CertContext[0][0]: dwInfoStatus=10c dwErrorStatus=20
  Issuer: CN=14EED8E8-BD0C-4CD9-990D-44A99B7DC6BC
  NotBefore: 10/26/2010 1:14 AM
  NotAfter: 10/26/2011 1:14 AM
  Subject: CN=14EED8E8-BD0C-4CD9-990D-44A99B7DC6BC
  Serial: 01
  11 b2 27 ec d3 e5 81 d7 35 f4 a2 fd 82 24 7e a4 c2 e3 3b 9c
  Element.dwInfoStatus = CERTTRUST_HAS_NAME_MATCHISSUER (0x4)
  Element.dwInfoStatus = CERTTRUST_IS_SELFSIGNED (0x8)
  Element.dwInfoStatus = CERTTRUST_HAS_PREFERREDISSUER (0x100)
  Element.dwErrorStatus = CERTTRUST_IS_UNTRUSTEDROOT (0x20)
  Exclude leaf cert:
  da 39 a3 ee 5e 6b 4b 0d 32 55 bf ef 95 60 18 90 af d8 07 09
  Full chain:
  11 b2 27 ec d3 e5 81 d7 35 f4 a2 fd 82 24 7e a4 c2 e3 3b 9c
  Issuer: CN=14EED8E8-BD0C-4CD9-990D-44A99B7DC6BC
  NotBefore: 10/26/2010 1:14 AM
  NotAfter: 10/26/2011 1:14 AM
  Subject: CN=14EED8E8-BD0C-4CD9-990D-44A99B7DC6BC
  Serial: 01
  11 b2 27 ec d3 e5 81 d7 35 f4 a2 fd 82 24 7e a4 c2 e3 3b 9c
  A certificate chain processed, but terminated in a root certificate which is not trusted by the trust provider. 0x800b01
  09 (-2146762487)
  Verifies against UNTRUSTED root
  Signer Info[0]:
  Signature matches Public Key
  CMSGSIGNER_INFO_PKCS_1_5VERSION(1)
  CERTID_ISSUER_SERIALNUMBER(1)
  Serial Number: 01
  Issuer:
  CN=14EED8E8-BD0C-4CD9-990D-44A99B7DC6BC
  Subject:
  CN=14EED8E8-BD0C-4CD9-990D-44A99B7DC6BC
  Hash Algorithm:
  Algorithm ObjectId: 1.2.840.113549.2.5 md5 (md5NoSign)
  Algorithm Parameters: NULL
  Encrypted Hash Algorithm:
  Algorithm ObjectId: 1.2.840.113549.1.1.1 RSA
  Algorithm Parameters: NULL
  Encrypted Hash:
  0000 2a 49 b0 b9 6e a0 0b f3 db 14 7d 0d f9 fd 89 25
  0010 b1 fe ad 44 6b 79 c5 31 1a 70 a0 71 d3 bf 22 07
  0020 b5 e3 5b 37 cd ee 63 9a 5b ed 85 d5 d8 fb 44 51
  0030 5c 80 a4 cf 53 78 f0 b4 b7 63 57 fa f1 f9 9d 5d
  0040 fb 4f 22 c7 f4 fb 34 65 1a e2 b1 cd ea b0 45 ab
  0050 af ca 09 bf da 92 ea eb 10 3f 04 e5 2c a3 ae 34
  0060 9a a1 50 67 27 a0 c5 aa d5 29 45 71 40 d1 73 cb
  0070 53 69 5d fa 14 1d db b8 df a2 13 20 e6 da 7a 16
  Authenticated Attributes[0]:
  6 attributes:
  Attribute[0]: 2.16.840.1.113733.1.9.2
  Value[0][0]:
  Unknown Attribute type
  0000 13 02 31 39 ..19
  0000: 13 02 ; PRINTABLE_STRING (2 Bytes)
  0002: 31 39 ; 19
  ; "19"
  Attribute[1]: 1.2.840.113549.1.9.3 (Content Type)
  Value[1][0]:
  Unknown Attribute type
  1.2.840.113549.1.7.1 PKCS 7 Data
  0000 06 09 2a 86 48 86 f7 0d 01 07 01 ..*.H......
  0000: 06 09 ; OBJECT_ID (9 Bytes)
  0002: 2a 86 48 86 f7 0d 01 07 01
  ; 1.2.840.113549.1.7.1 PKCS 7 Data
  Attribute[2]: 1.2.840.113549.1.9.5 (Signing Time)
  Value[2][0]:
  Unknown Attribute type
  Signing Time: 10/26/2010 1:14 AM
  0000 17 0d 31 30 31 30 32 36 30 38 31 34 32 39 5a ..101026081429Z
  0000: 17 0d ; UTC_TIME (d Bytes)
  0002: 31 30 31 30 32 36 30 38 31 34 32 39 5a ; 101026081429Z
  ; 10/26/2010 1:14 AM
  Attribute[3]: 1.2.840.113549.1.9.4 (Message Digest)
  Value[3][0]:
  Unknown Attribute type
  Message Digest:
  c3 01 9e 56 65 b3 08 20 d4 22 f3 73 1a 3a 06 b7
  0000 04 10 c3 01 9e 56 65 b3 08 20 d4 22 f3 73 1a 3a .....Ve.. .".s.:
  0010 06 b7 ..
  0000: 04 10 ; OCTET_STRING (10 Bytes)
  0002: c3 01 9e 56 65 b3 08 20 d4 22 f3 73 1a 3a 06 b7 ; ...Ve.. .".s.:..
  Attribute[4]: 2.16.840.1.113733.1.9.5
  Value[4][0]:
  Unknown Attribute type
  0000 04 10 91 73 92 a0 d5 02 e3 89 2c 2c ab 31 dc 35 ...s......,,.1.5
  0010 78 69 xi
  0000: 04 10 ; OCTET_STRING (10 Bytes)
  0002: 91 73 92 a0 d5 02 e3 89 2c 2c ab 31 dc 35 78 69 ; .s......,,.1.5xi
  Attribute[5]: 2.16.840.1.113733.1.9.7
  Value[5][0]:
  Unknown Attribute type
  0000 13 28 30 38 34 34 36 44 45 31 44 45 37 42 31 41 .(08446DE1DE7B1A
  0010 32 45 38 36 30 33 44 36 43 33 45 42 38 44 33 43 2E8603D6C3EB8D3C
  0020 38 30 44 41 36 30 31 38 31 30 80DA601810
  0000: 13 28 ; PRINTABLE_STRING (28 Bytes)
  0002: 30 38 34 34 36 44 45 31 44 45 37 42 31 41 32 45 ; 08446DE1DE7B1A2E
  0012: 38 36 30 33 44 36 43 33 45 42 38 44 33 43 38 30 ; 8603D6C3EB8D3C80
  0022: 44 41 36 30 31 38 31 30 ; DA601810
  ; "08446DE1DE7B1A2E8603D6C3EB8D3C80DA601810"
  Unauthenticated Attributes[0]:
  0 attributes:
  Computed Hash: 24 92 3c f9 15 fb 4d ad f8 dc f9 08 d3 6c 7d 79
  No Recipient
  Certificates:
  ================ Begin Nesting Level 1 ================
  Element 0:
  X509 Certificate:
  Version: 3
  Serial Number: 01
  01
  Signature Algorithm:
  Algorithm ObjectId: 1.2.840.113549.1.1.5 sha1RSA
  Algorithm Parameters:
  05 00
  Issuer:
  CN=14EED8E8-BD0C-4CD9-990D-44A99B7DC6BC
  [0,0]: CERTRDN_PRINTABLESTRING, Length = 36 (36/64 Characters)
  2.5.4.3 Common Name (CN)="14EED8E8-BD0C-4CD9-990D-44A99B7DC6BC"
  31 34 45 45 44 38 45 38 2d 42 44 30 43 2d 34 43 14EED8E8-BD0C-4C
  44 39 2d 39 39 30 44 2d 34 34 41 39 39 42 37 44 D9-990D-44A99B7D
  43 36 42 43 C6BC
  31 00 34 00 45 00 45 00 44 00 38 00 45 00 38 00 1.4.E.E.D.8.E.8.
  2d 00 42 00 44 00 30 00 43 00 2d 00 34 00 43 00 -.B.D.0.C.-.4.C.
  44 00 39 00 2d 00 39 00 39 00 30 00 44 00 2d 00 D.9.-.9.9.0.D.-.
  34 00 34 00 41 00 39 00 39 00 42 00 37 00 44 00 4.4.A.9.9.B.7.D.
  43 00 36 00 42 00 43 00 C.6.B.C.
  NotBefore: 10/26/2010 1:14 AM
  NotAfter: 10/26/2011 1:14 AM
  Subject:
  CN=14EED8E8-BD0C-4CD9-990D-44A99B7DC6BC
  [0,0]: CERTRDN_PRINTABLESTRING, Length = 36 (36/64 Characters)
  2.5.4.3 Common Name (CN)="14EED8E8-BD0C-4CD9-990D-44A99B7DC6BC"
  31 34 45 45 44 38 45 38 2d 42 44 30 43 2d 34 43 14EED8E8-BD0C-4C
  44 39 2d 39 39 30 44 2d 34 34 41 39 39 42 37 44 D9-990D-44A99B7D
  43 36 42 43 C6BC
  31 00 34 00 45 00 45 00 44 00 38 00 45 00 38 00 1.4.E.E.D.8.E.8.
  2d 00 42 00 44 00 30 00 43 00 2d 00 34 00 43 00 -.B.D.0.C.-.4.C.
  44 00 39 00 2d 00 39 00 39 00 30 00 44 00 2d 00 D.9.-.9.9.0.D.-.
  34 00 34 00 41 00 39 00 39 00 42 00 37 00 44 00 4.4.A.9.9.B.7.D.
  43 00 36 00 42 00 43 00 C.6.B.C.
  Public Key Algorithm:
  Algorithm ObjectId: 1.2.840.113549.1.1.1 RSA (RSA_SIGN)
  Algorithm Parameters:
  05 00
  Public Key Length: 1024 bits
  Public Key: UnusedBits = 0
  0000 30 81 88 02 81 80 7c 9f 78 02 50 de 9c 86 88 5b
  0010 9d 4e af cb 70 5e c9 a8 a9 7b 53 c6 29 7b ae 90
  0020 28 92 10 9a af 03 09 da b7 01 a1 15 19 ee 22 35
  0030 f4 45 5d 5a 5b 60 7c ef 98 5b 2d 47 b9 d7 78 c0
  0040 cd 78 1c 63 dd 81 4a b7 d9 6e 2e e8 f4 9d 52 2c
  0050 3a c5 fb c3 d8 9a 6b ef 49 5c fa 53 07 88 c0 e3
  0060 98 a7 88 18 79 41 da f4 33 08 3c 57 a6 f0 5e 4e
  0070 04 c6 8c e6 25 56 70 17 ae 38 49 c2 fd 37 7a 2b
  0080 78 1f 7d 35 12 19 02 03 01 00 01
  Certificate Extensions: 1
  2.5.29.15: Flags = 1(Critical), Length = 4
  Key Usage
  Digital Signature, Key Encipherment (a0)
  0000 03 02 05 a0 ....
  0000: 03 02 ; BIT_STRING (2 Bytes)
  0002: 05
  0003: a0
  Signature Algorithm:
  Algorithm ObjectId: 1.2.840.113549.1.1.5 sha1RSA
  Algorithm Parameters:
  05 00
  Signature: UnusedBits=0
  0000 40 c0 34 02 4c 6d 59 4d 43 21 90 d4 43 e0 69 3b
  0010 83 dc e8 5d b0 9b c9 4f 50 6e 7c a3 8c fb e9 0b
  0020 99 21 40 27 e8 99 f6 83 2d 6a 79 03 c5 a7 2c 0b
  0030 f3 d7 5a 7c 45 2c 7d af 13 a1 02 e7 3a d4 0c 41
  0040 4f b6 42 b9 c9 d3 ec f0 33 a9 92 cf 0b ba d4 46
  0050 b0 04 b6 99 a4 c1 92 c2 3b 3c 1e d9 e4 ed 09 ca
  0060 27 c3 74 ba 68 93 a9 65 a3 7a 1a 4e c3 a5 51 f6
  0070 8e 06 94 76 b4 c3 af 55 0f 7b b5 05 36 55 fd 1e
  Signature matches Public Key
  Root Certificate: Subject matches Issuer
  Key Id Hash(rfc-sha1): 08 44 6d e1 de 7b 1a 2e 86 03 d6 c3 eb 8d 3c 80 da 60 18 10
  Key Id Hash(sha1): 21 cd df fe 7c 70 f9 0d 38 cd f5 30 e9 62 3f 7d 8a 7c bf 8b
  Cert Hash(md5): 6e 8e c8 90 f7 e5 a6 0d a4 e3 4c 4f 38 28 75 1b
  Cert Hash(sha1): 11 b2 27 ec d3 e5 81 d7 35 f4 a2 fd 82 24 7e a4 c2 e3 3b 9c
  ---------------- End Nesting Level 1 ----------------
  No CRLs

• Mail System Error - Returned Mail

  I have set up the Mail with my Pop accounts from the local cable company. I can send and receive all my mail through those email addresses.
  THE PROBLEM is that every mail recipient receives the above message when they send an email to me:
  Mail System Error - Returned Mail
  Reason: 5.1.1 unknown or illegal alias: [email protected]
  (xxxxxxxxx = my account)
  I receive the email, but the sender is concerned that I don't.
  I DO NOT have a mac.com address, nor do I need or want one.
  Can I delete the mac.com address somehow? I did delete the mac.com from my email accounts, but it didn't solve the problem and any time I try to add an account the mac.com address is the default.
  All the people who send my family emails are beginning to get upset -- Please Help!

  Hello au:
  Welcome to Apple discussions.
  If I were you, I would look at the Mail preferences closely. I suspect (although I do not know, as I have never seen anything like you describe before) that there is a setting that is causing the problem.
  Barry
  P.S. Not much help, but the problem is new to me.