12 April,16 at 11:08 AM
Applies to: Centrify Zone Provisioning Agent 5.1.1 on all platforms
Problem:
ZPA fails to provision.
When running ZPA on a domain controller as a Service Account, the following errors are generated in the ZPA debug log:
[2013-08-05 11:34:16.900 -0500] Centrify.Provisioning.Agent.exe[5220,6] Error: ProvisioningWorker.LogEvent: Details: Access to the registry key 'HKEY_LOCAL_MACHINE\SOFTWARE\Centrify\CIMS' is denied.
[2013-08-05 11:34:16.916 -0500] Centrify.Provisioning.Agent.exe[5220,6] Verbose: DomainPoller.Poll: Exception: System.UnauthorizedAccessException: Access to the registry key 'HKEY_LOCAL_MACHINE\SOFTWARE\Centrify\CIMS' is denied.
Cause:
During the install of ZPA, the CIMS key was not generated on the following registry key path:
"HKEY_LOCAL_MACHINE\SOFTWARE\Centrify\CIMS"
This happens if DirectManage Access Manager is not installed on the system and only ZPA is installed, regardless if only ZPA was installed as a Domain Admin.
Workaround:
The following workaround can be performed: