Certificates?

#1 Argee

Member

Group: Members
Posts: 24
Joined: 10-June 08
Gender:Male
Location:Crowborough, East Sussex

Posted 04 June 2009 - 05:30 AM

I've searched for a similar thread, without success. I've recently been getting this error message in Event Viewer:

Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

When I click on the link, I get a file called "authroot.stl" - a certificate file. If I then extract the file, I get a Certificate Trust List, at the head of which is: "This Certificate Trust List is not valid. The certificate that signed the list is not valid." Clicking "View Signature" for each entry in the list results in "The certificate is not valid for the requested usage."

I'm sure that this means something to someone, but - to me - it might just as well say "wibble." What's going on here, could anyone tell me, plus how to do something about it, please?

TIA! :huh:

Ray

This post has been edited by Argee: 04 June 2009 - 05:30 AM

#2 garmanma

Computer Masochist

Group: Staff Emeritus
Posts: 27,809
Joined: 27-January 07
Location:Cleveland, Ohio

Posted 04 June 2009 - 08:21 AM

Check the date and time in the lower right corner of the screen
Reset it if necessary and then try windows Update again

Mark

why won't my laptop work?

Having grandkids is God's way of giving you a 2nd chance because you were too busy working your butt off the 1st time around
Do not send me PMs with problems that should be posted in the forums. Keep it in the forums, so everyone benefits
Become a BleepingComputer fan: Facebook and Twitter

#3 Argee

Member

Group: Members
Posts: 24
Joined: 10-June 08
Gender:Male
Location:Crowborough, East Sussex

Posted 04 June 2009 - 01:44 PM

Strangely enough, just before I posted my question, I'd checked the time with "ClockSync" and it was spot on. I did a Windows Update and installed an updated definition for Defender.

I seem to have had this error around the same time as I installed the RC of Windows 7 (as a dual-boot, non-default OS and on a totally separate drive), although I'm sure it was prior to that install.

Ray

#4 intrinsic

New Member

Group: Members
Posts: 9
Joined: 16-April 09
Gender:Male
Location:N. Illinois

Posted 04 June 2009 - 05:41 PM

Had this problem working on a friend's box. The error code is for wrong system date/time but it's really a problem with CA root certificates. Download and install the certs and the problem should go away. Here's the URL for M$'s fix:
support.microsoft.com/kb/931125

#5 Argee

Member

Group: Members
Posts: 24
Joined: 10-June 08
Gender:Male
Location:Crowborough, East Sussex

Posted 05 June 2009 - 04:38 AM

Many thanks - much appreciated! :huh:

Ray

#6 Argee

Member

Group: Members
Posts: 24
Joined: 10-June 08
Gender:Male
Location:Crowborough, East Sussex

Posted 06 June 2009 - 04:22 AM

Having downloaded the rootsupd.exe file, I've tried running it several times, even in Safe Mode. Nothing seems to happen at all and the error is still occurring. Should there be some kind of dialog box after running it? I've clicked on the file and left it for hours, in case it's a slow, in-the-background thing - still no difference. :huh:

Ray.

#7 Argee

Member

Group: Members
Posts: 24
Joined: 10-June 08
Gender:Male
Location:Crowborough, East Sussex

Posted 07 June 2009 - 11:40 AM

Sorted! I changed the startup of Cryptographic Services to Automatic (Delayed start). Job done! Now, if only I could get rid of that pesky WMI error ..... :huh: