在这篇文章中，我们将探讨事件 1098: Error: 0xCAA5001C Token broker operation failed^{(Event 1098: Error: 0xCAA5001C Token broker operation failed)} in Windows 10问题的原因并提供解决方案。当您登录到基于Windows 10的计算机并尝试访问适用于企业的^(Business)Windows 应用商店^{(Windows Store)}时，您可能会遇到此问题。但是，Azure Active Directory ( AAD ) 身份验证失败。并且事件 1098 记录在Microsoft - Windows - AAD /操作日志中。

事件ID 1098：错误 0xCAA5001C，令牌^(Token)代理操作失败

如果以下注册表项中的一个或两个^(Registry)缺少权限或所有权属性^{(missing permissions or ownership attributes)}，则会出现此问题：

HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppModel\SystemAppData\ Microsoft.AAD.BrokerPlugin_cw5n1h2txyewy\PSR

HKEY_USERS\S-1-5-21-299502267-1950408961-849522115-1818\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion \AppModel\SystemAppData\Microsoft.AAD.BrokerPlugin_cw5n1h2txyewy\PSR

将事件ID 1098中为用户报告的^{(ID 1098)}SID与^(SID)HKEY_USERS下的路径匹配。在这种情况下，它是——

S-1-5-21-299502267-1950408961-849522115-1818

要解决此问题，请执行以下操作：

1.必要时取得密钥的所有权（所有者 = SYSTEM）。^{(Take ownership of the key)}

2. 通过启用继承来修复上面显示的这些注册表项的权限（修复一个应该修复两个，除非多个用户登录到同一设备）。见下图：

如果您查看HKEY_USERS\ { SID }下的~\PSR 注册表^(Registry)项的权限，则Inherited from 字段显示从HKEY_USERS\ { SID } 路径继承。

如果这不能解决问题，请考虑在执行身份验证方法时运行Process Monitor ，以在^{(Process Monitor)}注册表^(Registry)或文件系统的其他区域中查找可能导致身份验证失败的ACCESS DENIED 。

此问题可能会影响适用于企业的 Windows 应用商店以及企业状态漫游。^{(This issue may affect the Windows Store for Business as well as Enterprise State Roaming.)}

Event ID 1098: Error 0xCAA5001C, Token broker operation failed

In this post, we will explore the cause and also provide the ѕolution to the isѕue of Event 1098: Error: 0xCAA5001C Token broker operation failed in Windows 10. You might experience this issue when you log on to a Windows 10-based computer and you try to access Windows Store for Business. However, the Azure Active Directory (AAD) authentication fails. and Event 1098 is logged in the Microsoft-Windows-AAD/Operational log.

Event ID 1098: Error 0xCAA5001C, Token broker operation failed

This issue occurs if there are missing permissions or ownership attributes on one or both of the following Registry keys:

HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppModel\SystemAppData\ Microsoft.AAD.BrokerPlugin_cw5n1h2txyewy\PSR

HKEY_USERS\S-1-5-21-299502267-1950408961-849522115-1818\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion \AppModel\SystemAppData\Microsoft.AAD.BrokerPlugin_cw5n1h2txyewy\PSR

Match the SID reported for the user in event ID 1098 to the path under HKEY_USERS. In this case, it is-

S-1-5-21-299502267-1950408961-849522115-1818

To resolve this issue, do the following:

1. Take ownership of the key if necessary (Owner = SYSTEM).

2. Fix the permissions on these registry keys shown above by enabling inheritance (fixing one should fix both unless multiple users log on to the same device). See the image below:

If you view the permissions of the ~\PSR Registry key under HKEY_USERS\{SID}, the Inherited from field shows inheritance from the HKEY_USERS\{SID} path.

If this does not resolve the issue, consider running Process Monitor while performing the authentication method to look for ACCESS DENIED in other areas of the Registry or file system that could be causing the authentication failure.

This issue may affect the Windows Store for Business as well as Enterprise State Roaming.

Related posts

• Event ID 158错误 - 同磁盘GUIDs assignment在Windows 10

• 用户注销Windows 10计算机时Fix Event ID 7031或7034错误

• 如何在Windows 11/10上修复Event ID 642 ESENT error

• Fix Service Control Manager Event ID 7001在Windows 10上

• Event ID 307和304在Windows 10设备上使用error code 0x801c001d

• System error 6118，此工作组的服务器列表不可用

• Fix Crypt32.dll未找到或缺少Windows 11/10错误

• 出了错，Turn关anti-virus software，0x8007045d

• Windows无法验证数字签名（Code 52）

• Fix Logitech Setpoint Runtime error在Windows 10上

• 该operating system无法启动，因为system driver错误

• Error 1327 Invalid Drive安装或卸载程序时

• 如何在Windows 10修复Disk Signature Collision problem

• Fix Smart Check通过，HP computer的错误错误

• 应用程序找不到Scanner - WIA_ERROR_OFFLINE,0x80210005

• MBR2GPT未能启用备份/在Windows 10还原权限

• Event ID 219插入设备时; Driver WUDFRD无法加载

• Fix OOBEKEYBOARD，OOBELOCAL，在Windows OOBEREGION错误

• 存根在Windows 10上收到了一个坏data error message

• Fix Application Load Error 5:0000065434在Windows 10上