[WADS] Error 400 when deploying from a secondary repository

Share your tips or issues concerning the WAPT Console or WAPT Agent here
Forum Rules
Community Forum Rules
* English support on www.reddit.com/r/wapt
* French community support is available on this forum
* Please prefix the topic title with [RESOLVED] if it is resolved.
* Please do not edit a topic that is tagged [RESOLVED]. Open a new topic referencing the old one.
* Specify the installed WAPT version, full version, and build number (2.2.1.11957 / 2.2.2.12337 / etc.) as well as the Enterprise/Discovery edition.
* Versions 1.8.2 and earlier are no longer supported. The only questions accepted regarding version 1.8.2 are related to upgrading to a supported version (2.1, 2.2, etc.).
* Specify the server OS (Linux/Windows) and version (Debian Buster/Bullseye - CentOS 7 - Windows Server 2012/2016/2019).
* Specify the OS of the administration/package creation machine and the machine with the problematic agent, if applicable (Windows 7/10/11/Debian 11/etc.).
* Avoid asking multiple questions when opening a topic, otherwise it may be ignored. If there are multiple topics, open separate topics, preferably one after the other and not all at the same time (i.e., do not spam the forum).
* Include code snippets, screenshots, and other images directly in the post. Links to Pastebin, Bitly, and other third-party sites will be systematically removed.
* As with any community forum, support is provided voluntarily by members. If you require commercial support, you can contact Tranquil IT's sales department at 02.40.97.57.55
Answer
MaximeJ
Messages: 8
Registration: May 26, 2024 - 09:28

May 27, 2024 - 12:06

Good morning,

Following the activation and deployment of a secondary repository to accelerate our deployments, they are not working. The client boots correctly via the WinPE key, it correctly retrieves the rule instructing it to locate its secondary repository, but when it tries to download the wads.exe file, the following message appears in the client console:

Code: Select all

"Error getting wads executable from server: THttpClientSocket.WGet: serversecondaire.domaine.local:443/api/v3/get_wads_exe/192.168.1.10/wads64.exe failed as HTTP Error 400 - Bad Request"
And I see the same thing in the nginx logs of the secondary repository server. Yet my repository is properly synchronized, and I can see the files in the shared directory. Clients are successfully downloading their packages from this secondary repository. I only see this error, and I don't know where else to look besides the client logs and /var/log/ for the nginx and wapt files, but I can't find anything else.

Does anyone have any idea what could be causing this 400 error and how to fix it?


Furthermore, another question on the subject: we have Windows 11 Enterprise licenses, but regardless of the options we add to the .xml response file (based on the index number or the version label in the corresponding tag) once deployed, the workstations are in Professional edition.
Do you know what could explain this behavior and where to find the logs to understand it?


WAPT Agents and Server version: 2.4.0.14.080
Secondary servers and repositories running Debian 12.5

Thank you in advance for your help or ideas to move forward!
Maxim
High
User avatar
sfonteneau
WAPT Expert
Messages: 2318
Registered: July 10, 2014 - 11:52 PM
Contact :
Contact Sfonteneau

May 27, 2024 - 1:26 PM

Hello

, do you have HTTPS certificate verification enabled on WinPE?

Is your secondary repository rule set to use HTTPS?

Simon
High
User avatar
dcardon
WAPT Expert
Messages: 1930
Registration: June 18, 2014 - 09:58
Location: Saint Sébastien sur Loire
Contact :
Contact dcardon

May 27, 2024 - 2:23 PM

Hello Maxime,
MaximeJ wrote: May 27, 2024 - 12:06
Also, another question on this topic: we have Windows 11 Enterprise licenses, but regardless of the options we add to the response .xml file (based on the index number or the version label in the corresponding tag), the workstations, once deployed, end up in the Professional edition.
Do you know what could explain this behavior and where to find the logs to understand it?
To make it easier to follow the discussion on the forum, it's best to ask one question per topic; otherwise, it's difficult to keep track. Could you please ask the question again in a new topic?

WAPT Agents and server version: 2.4.0.14.080.
Secondary servers and repositories running on Debian 12.5.
Version 2.5.5 has been released with a whole host of small fixes; I encourage you to upgrade :-)

Sincerely,

Denis
Denis Cardon - Tranquil IT
Share your experiences on WAPT! Send us your blog and article URLs in the "Your Opinion of the forum, and we'll feature them on the WAPT
High
MaximeJ
Messages: 8
Registration: May 26, 2024 - 09:28

May 27, 2024 - 3:06 PM

Yes, I checked the box to enable HTTPS on WinPE, and the secondary repository rule correctly points to an HTTPS URL on that server. When I look at the logs of clients already deployed and using this secondary repository, they correctly validate the server's certificate.

These are certificates issued by our internal CA; I added the certificate chain and validated the Nginx configuration without errors.

Are there any logs I can retrieve from the client or server that would give me more information? Perhaps the Nginx configuration?


Okay, good point about version 2.5.5; we'll plan an upgrade then! And the second question makes sense; I'll create another thread. Thanks!
High
User avatar
dcardon
WAPT Expert
Messages: 1930
Registration: June 18, 2014 - 09:58
Location: Saint Sébastien sur Loire
Contact :
Contact dcardon

May 27, 2024 - 3:26 PM

Hi Maxime,

there was a bug with HTTPS redirect. Before version 2.5.5, the wgetwads.exe pre-installer connected to the server, which then sent it an HTTP redirect to connect to the secondary repository. However, there was a misinterpretation of the return codes and the TLS context reset, hence the 400 error.
We've changed the behavior so that the wgetwads.exe pre-installer retrieves the secondary repository rules and connects directly without going through the HTTP redirect [1].

So upgrading to 2.5.5 should solve your problem.

Best regards,

Denis

[1] https://www.wapt.fr/en/doc/wapt-changel ... 2024-05-22
Denis Cardon - Tranquil IT
Share your experiences on WAPT! Send us your blog and article URLs in the "Your Opinion of the forum, and we'll feature them on the WAPT
High
MaximeJ
Messages: 8
Registration: May 26, 2024 - 09:28

May 27, 2024 - 3:35 PM

That's very clear, thank you very much! I'll be able to put pressure on my colleagues who manage the server to launch the upgrade to 2.5.5 and we'll restart our deployments then.

Best regards
High
Answer

Return to "WAPT usage (Console, Agent) / WAPT usage (Console, Agent)"


  • To go further with WAPT