question

JoeHansen-4497 avatar image
0 Votes"
JoeHansen-4497 asked ·

Unable to create a Token Binding Key issue when deploying Hybrid Cloud print

I've been working on trying to get Hybrid Cloud Print set up using these article here among others: https://www.scconfigmgr.com/2018/01/22/deploy-hybrid-cloud-print/ https://docs.microsoft.com/en-us/windows-server/administration/hybrid-cloud-print/hybrid-cloud-print-deploy

I configured both proxies with Azure AD pre-authentication with windows integrated SSO, since that was the only way I seemed to be able to get it to work. I'm now able to publish printers with the publish-cloudprinter cmdlet, and I can directly hit the public URL of discovery endpoint to see them in the JSON, But i haven't had any luck getting any workstation to actually see them.

The behavior is that when I hit the button to find a cloud printer, they get no results back. Meanwhile, in the workstation's AAD log, it records the following:

Error: 0x80070057 The parameter is incorrect.

The parameter is incorrect.

Exception of type 'class WinRTException' at oauthtokenrequestbase.cpp, line: 732, method: OAuthTokenRequestBase::QueryTokenBindingKeyId::::operator ().

Log: 0x8aa5007f Unable to create a Token Binding Key. Logged at oauthtokenrequestbase.cpp, line: 732, method: OAuthTokenRequestBase::QueryTokenBindingKeyId::::operator ().

Request: authority: https://login.microsoftonline.com/TenantId, client:NativeApplicationId , redirect URI: ms-appx-web://Microsoft.AAD.BrokerPlugin/NativeApplicationId, resource: http://MopriaDiscoveryService/CloudPrint, correlation ID (request): 13e79b78-7c28-4938-a029-d6d6a12e089d

(I replaced the tenant and native application ids in the above) I'm not quite sure where to go with this particular error. I'm not sure what parameter is being called that is incorrect, or how to troubleshoot. Does anyone have any advice on where to look for a next step?

azure-active-directory
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

JoeHansen-4497 avatar image
0 Votes"
JoeHansen-4497 answered ·

I don't think I ever quite figured out what specifically the error here was, but with guidance from Microsoft support, I deleted all 3 of the applications in azure, and set them up again per the instructions in the microsoft article I referenced above, including the optional pre-authentication. I was able to get it to work the second time.

It seems likely I made some mistake in the config for one of them the first time around, but never spotted it.

https://docs.microsoft.com/en-us/windows-server/administration/hybrid-cloud-print/hybrid-cloud-print-deploy

· Share
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

MarileeTurscak avatar image
0 Votes"
MarileeTurscak answered ·

Have you checked some of the troubleshooting guides for this? It seems there was a hot fix deployed that fixed this error for a lot of people, though I am not sure if this is related to your particular case. https://support.microsoft.com/en-us/help/3041857/code-0x80070057-the-parameter-is-incorrect-error-when-you-try-to-displ

If you send me an email at AzCommunity@microsoft.com I can get a support case opened for you, or you are also welcome to message me there and share any relevant screenshots or logs.

· 1 · Share
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Thanks for responding. I haven't found any troubleshooting guides that cover this particular issue. That was why I posted here.

The hot fix referenced applies to server 2012 R2/win 8. I'm working with a server 2019/win 10 environment, so i don't think it applies. While the error itself is the same, it's in a different area.

i will send an email to open a case.

0 Votes 0 · ·