WARNING: Cached cookie has expired or new PID is available

I'm seeing the error on several my machines. Server URL is in correct.
I checked and rechecked the registries for AU on the machines and it
should not be going to the IP address that is in the log.

Any help in troubleshooting on why AU is using a different IP, contrary
to the registry settings would be appreciated.

I'm using XP SP3 clients, and WSUS3 on 2003 server.

Thanks.




2009-07-23 09:25:19:734 912 598 PT WARNING: Cached cookie has expired
or new PID is available
2009-07-23 09:25:19:750 912 598 PT Initializing simple targeting
cookie, clientId = c09ff9eb-3c6d-4bb4-9ef7-5ce1cf4109d9, target group =
ADMN, DNS name = ppm-electric
2009-07-23 09:25:19:750 912 598 PT Server URL =
http://130.166.8.154/SimpleAuthWebSe...impleAuth.asmx
2009-07-23 09:25:42:968 912 598 Misc WARNING: Send failed with hr =
80072efd.
2009-07-23 09:25:42:968 912 598 Misc WARNING: SendRequest failed with
hr = 80072efd. Proxy List used: <(null)> Bypass List used : <(null)>
Auth Schemes used : <>
2009-07-23 09:25:42:968 912 598 PT + Last proxy send request failed
with hr = 0x80072EFD, HTTP status code = 0
2009-07-23 09:25:42:968 912 598 PT + Caller provided credentials = No
2009-07-23 09:25:42:968 912 598 PT + Impersonate flags = 0
2009-07-23 09:25:42:968 912 598 PT + Possible authorization schemes
used =
2009-07-23 09:25:42:968 912 598 PT WARNING: GetAuthorizationCookie
failure, error = 0x80072EFD, soap client error = 5, soap error code =
0, HTTP status code = 200
2009-07-23 09:25:42:968 912 598 PT WARNING: Failed to initialize
Simple Targeting Cookie: 0x80072efd
2009-07-23 09:25:42:968 912 598 PT WARNING: PopulateAuthCookies
failed: 0x80072efd
2009-07-23 09:25:42:968 912 598 PT WARNING: RefreshCookie failed:
0x80072efd
2009-07-23 09:25:42:968 912 598 PT WARNING: RefreshPTState failed:
0x80072efd
2009-07-23 09:25:42:968 912 598 PT WARNING: PTError: 0x80072efd
2009-07-23 09:25:42:968 912 598 Report WARNING: Reporter failed to
upload events with hr = 80072efd.
2009-07-23 09:25:42:968 912 598 Report REPORT EVENT:
{ADCDF899-25E6-430D-8C0A-F5E8B9CE0C19} 2009-07-23 09:24:55:921-0700 1
147 101 {00000000-0000-0000-0000-000000000000} 0 0 MicrosoftUpdate
Success Software Synchronization Windows Update Client successfully
detected 9 updates.
2009-07-23 09:25:43:093 912 598 PT WARNING: Cached cookie has expired
or new PID is available
2009-07-23 09:25:43:093 912 598 PT Initializing simple targeting
cookie, clientId = c09ff9eb-3c6d-4bb4-9ef7-5ce1cf4109d9, target group =
ADMN, DNS name = ppm-electric
2009-07-23 09:25:43:093 912 598 PT Server URL =
http://192.168.8.154/SimpleAuthWebSe...impleAuth.asmx
2009-07-23 09:26:06:406 912 598 Misc WARNING: Send failed with hr =
80072efd.
2009-07-23 09:26:06:406 912 598 Misc WARNING: SendRequest failed with
hr = 80072efd. Proxy List used: <(null)> Bypass List used : <(null)>
Auth Schemes used : <>
2009-07-23 09:26:06:406 912 598 PT + Last proxy send request failed
with hr = 0x80072EFD, HTTP status code = 0
2009-07-23 09:26:06:406 912 598 PT + Caller provided credentials = No
2009-07-23 09:26:06:406 912 598 PT + Impersonate flags = 0
2009-07-23 09:26:06:406 912 598 PT + Possible authorization schemes
used =
2009-07-23 09:26:06:406 912 598 PT WARNING: GetAuthorizationCookie
failure, error = 0x80072EFD, soap client error = 5, soap error code =
0, HTTP status code = 200
2009-07-23 09:26:06:406 912 598 PT WARNING: Failed to initialize
Simple Targeting Cookie: 0x80072efd
2009-07-23 09:26:06:406 912 598 PT WARNING: PopulateAuthCookies
failed: 0x80072efd
2009-07-23 09:26:06:406 912 598 PT WARNING: RefreshCookie failed:
0x80072efd
2009-07-23 09:26:06:406 912 598 PT WARNING: RefreshPTState failed:
0x80072efd
2009-07-23 09:26:06:406 912 598 PT WARNING: PTError: 0x80072efd
2009-07-23 09:26:06:406 912 598 Report WARNING: Reporter failed to
upload events with hr = 80072efd.
2009-07-23 09:37:09:937 912 598 PT WARNING: Cached cookie has expired
or new PID is available
2009-07-23 09:37:09:937 912 598 PT Initializing simple targeting
cookie, clientId = c09ff9eb-3c6d-4bb4-9ef7-5ce1cf4109d9, target group =
ADMN, DNS name = ppm-electric
2009-07-23 09:37:09:937 912 598 PT Server URL =
http://192.168.8.154/SimpleAuthWebSe...impleAuth.asmx
2009-07-23 09:37:46:187 912 598 Misc WARNING: Send failed with hr =
80072efd.
2009-07-23 09:37:46:187 912 598 Misc WARNING: SendRequest failed with
hr = 80072efd. Proxy List used: <(null)> Bypass List used : <(null)>
Auth Schemes used : <>
2009-07-23 09:37:46:187 912 598 PT + Last proxy send request failed
with hr = 0x80072EFD, HTTP status code = 0
2009-07-23 09:37:46:187 912 598 PT + Caller provided credentials = No
2009-07-23 09:37:46:187 912 598 PT + Impersonate flags = 0
2009-07-23 09:37:46:187 912 598 PT + Possible authorization schemes
used =
2009-07-23 09:37:46:187 912 598 PT WARNING: GetAuthorizationCookie
failure, error = 0x80072EFD, soap client error = 5, soap error code =
0, HTTP status code = 200
2009-07-23 09:37:46:187 912 598 PT WARNING: Failed to initialize
Simple Targeting Cookie: 0x80072efd
2009-07-23 09:37:46:187 912 598 PT WARNING: PopulateAuthCookies
failed: 0x80072efd
2009-07-23 09:37:46:187 912 598 PT WARNING: RefreshCookie failed:
0x80072efd
2009-07-23 09:37:46:187 912 598 PT WARNING: RefreshPTState failed:
0x80072efd
2009-07-23 09:37:46:187 912 598 PT WARNING: PTError: 0x80072efd
2009-07-23 09:37:46:187 912 598 Report WARNING: Reporter failed to
upload events with hr = 80072efd.
2009-07-23 09:50:58:906 912 798 AU ########### AU: Uninitializing
Automatic Updates ###########
2009-07-23 09:51:00:296 912 798 Service *********
2009-07-23 09:51:00:296 912 798 Service ** END ** Service: Service
exit [Exit code = 0x240001]
2009-07-23 09:51:00:296 912 798 Service *************

--

"GEB" <> wrote in message
news:uo%23$...
> I'm seeing the error on several my machines.

This is not an ERROR, this is a WARNING,
and it's a NORMAL indication when the targeting cookie has expired since the
last time it was used.

The targeting cookie expires after ~60 minutes, so if you're not using
hourly detections (and there's no practical reason for doing so), you'll
routinely see this entry right before the call to the SimpleAuthWebService.

> I checked and rechecked the registries for AU on the machines and it
> should not be going to the IP address that is in the log.
>
> Any help in troubleshooting on why AU is using a different IP, contrary
> to the registry settings would be appreciated.

This is a totally different issue, not related to the above WARNING.

> 2009-07-23 09:25:19:750 912 598 PT Server URL =
> http://130.166.8.154/SimpleAuthWebSe...impleAuth.asmx
> 2009-07-23 09:25:42:968 912 598 Misc WARNING: Send failed with hr =
> 80072efd.

This error -- 0x80072efd -- is being logged because there is no WSUS server
at http://130.166.8.154.

So, if this is the wrong IP Address, and that's your concern, then the
answer to your question is that *something* (Local Policy, Group Policy,
somebody with registry editing skills) has incorrectly configured the WSUS
server URL.


--
Lawrence Garvin, M.S., MCITP:EA, MCDBA
Principal/CTO, Onsite Technology Solutions, Houston, Texas
Microsoft MVP - Software Distribution (2005-2009)

MS WSUS Website: http://www.microsoft.com/wsus
My MVP Profile: http://mvp.support.microsoft.com/pro...awrence.Garvin