jb00

I was able to modify this for our environment and make it work. Thank you so much for this!!

SCCM CB 1706 - Win7 to Win10 migration using USMT, LTI (non-upgrade) - When re-imaging a machine using the same computer name, the client does not recognize the PKI cert. The machine pulls the previous PKI cert that was issued and ClientIDManagerStartup.log has the following errors: 1) Failed to acquire certificate private key. 2) Certificate [Thumbprint...] issued to 'machine name' doesn't have private key or caller doesn't have access to private key. 3) Unable to find PKI certificate matching SCCM certificate selection criteria. 0x87d00283. I have found that if I request a new PKI certificate or change the machine's name in the imaging process, then the client registers. Is there a way to automate the recovery of the private key so that the client can use the existing PKI cert? Or I guess the correct question is how do I resolve this through automation during the imaging process? Thanks Jeff