Event ID 768 — Rogue Detection

Applies To: Windows Server 2008 R2

Windows Deployment Services requires interaction with Active Directory Domain Services for several critical functions. One of these functions is rogue detection, which determines whether the Pre-Boot Execution Environment (PXE) server is authorized to provide services in the domain. Rogue detection is also known as Dynamic Host Configuration Protocol (DHCP) authorization.

Event Details

Product: Windows Operating System
ID: 768
Source: WDSPXE
Version: 6.1
Message: The Windows Deployment Services server was unable to detect the configured rogue detection state. This can happen if there was an error reading configuration information from the registry.

Error Information: %1


Check the registry data and permissions

The Windows Deployment Services PXE server must be able to read the necessary configuration settings from the registry so that is can provide network boot programs to client computers. To resolve this issue, ensure that the registry data is not missing or corrupt, and that the PXE server has the correct permissions.

Caution: Incorrectly editing the registry might severely damage your system. Before making changes to the registry, you should back up any valued data.

To perform this procedure, you must either be a member of the local Administrators group or have been delegated the appropriate authority.

To ensure the registry data and permissions:

  1. Open the Registry Editor. (Click Start, type regedit in the Start Search box, and then press ENTER).
  2. Ensure that the WDSPXE registry key exists at the following location:HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WDSServer\Providers\WDSPXE.
  3. If this key exists at the specified location, ensure that the SYSTEM account used by WDSPXE has permission to read from the registry. To do this, right-click the WDSServer node, click Permissions, click SYSTEM, and then ensure that Full Control is selected.
  4. If the key is not present or is corrupt, you will need to reinitialize the server. To do this, open the Command Prompt window, run wdsutil /uninitialize-server, and then run wdsutil /initialize-server /reminst:<path to RemoteInstall folder>.


To verify that your PXE server is authorized:

  1. Open the Command Prompt window. (Click Start, point to All Programs, click Accessories, and then click Command Prompt.)
  2. At the command prompt, run wdsutil /get-server /show:config.
  3. Verify that Rogue detection (under PXE Bind Policy) is set to Enabled, and that the Authorization status (under Server Authorization) is set to Authorized.

Rogue Detection

Windows Deployment Services