Hey there i had a frustrating problem over the last few days with a staff members personal laptop. Microsoft has recently started offering a $13 license of office 2016 that you can give to your staff. This takes the form of a small exe download (aprox 4mb) that then "streams" the office install from the internet. Was failing over and over again. reimaged the laptop, still failed. Installed new ssd, still failed. So i looked into the errors and they were all http related:
07/24/2018 14:42:13.766 SETUP (0x7b0) 0x13c4 Click-To-Run Non Task Error bg87a Unexpected DownloadOffice::DownloadFile {"MachineId": "********************", "SessionID": "***********************", "GeoID": 244, "Ver": "0.0.0.0", "C2RClientVer": "0.0", "ErrorCode": 30126, "ErrorType": "WinHttpReceiveResponseFailed", "AppVErrorSource": "", "ErrorMessage": "WinHttpReceiveResponseFailed (OHttp::SendRequest: Http Receive request failed , Error:0x2f78)", "ErrorDetails": "", "ContextData": "Oexception throw when downloading officecdn.microsoft.com/.../stream.x86.en-us.dat,Retry:2,BufferSize:104857600"}
(some data changed to asterisks for anonymity)
On a hunch, I decided to go down to starbucks and use their free wifi. The download completed without incident.
Now that I knew it was my own XG firewall's fault, I then looked through the firewall logs. I found a whole bunch of denied to the akamai CDN from that machine.
So i guess this is a two part discussion. Firstly, how do i stop blocking these kinds of things, and why was it blocked? this is a microsoft CDN, you dont get bigger or more popular than that.
Secondly i wanted to flag the issue for anyone else trying this same procedure so they wouldn't waste a day of time pointlessly redownloading the click to run installer and trying all sorts of other OS level fixes to try and get it going. It should be noted that no sophos antivirus client is on the workstation as it is a personal laptop.
This thread was automatically locked due to age.
