Download Failures Due to WinHttpSendRequest Error 12029
search cancel

Download Failures Due to WinHttpSendRequest Error 12029


Article ID: 289414


Updated On:


Carbon Black App Control (formerly Cb Protection)


  • Agents are showing with Approvals Out of Date or Yara Rules Out of Date
  • Agent is returning errors similar to:
    Error[Failed to obtain CL file[https://ServerAddress/hostpkg/pkg.php?pkg=configlistwithdeleteditems.xml.egk]: Error[WinHttpSendRequest Error[12029:]
    Error[Failed to obtain file[https://ServerAddress/hostpkg/pkg.php?pkg=Yara.bt9]: Error[WinHttpReceiveResponse Error[12029:]


  • App Control Console: All Supported Versions
  • App Control Agent: All Supported Versions
  • Microsoft Windows: All Supported Versions


Microsoft defines the WinHttpSendRequest  Error[12029] as:

Returned if connection to the server failed.

This error indicates that the endpoint has resolved the DNS name of the remote location, but cannot establish a connection with the remote location. Typically this happens when the port (such as 443) is blocked.


  1. Verify traffic between the endpoint and the Resource Download Location (RDL) is not blocked by the firewall.
  2. Use PowerShell on the endpoint to test the connection:
    tnc -ComputerName ServerAddressFQDN -Port 443 -InformationLevel "Detailed"
  3. Log in to the endpoint encountering the error and use a browser to validate the file exists and can be downloaded (without error), example:
  4. matching set of Protocols and Cipher Suites must exist between the endpoints and the application server.
  5. Manually import the problematic file on the endpoint (Yara, Configlist, TrustedCertList or Keychain)