Trusted Root Key errors on SMS 2003 and SCCM Clients

When a client's boundaries change suddenly, or when Site boundaries overlap between two sites in a hierarchy, or when a client is assigned to a new site, you may see the following error in the client's Locationservices.log

"The trusted key, mp certificate and the mp machine have changed on server.

The client cannot validate the authentication information.
Failed to refresh trusted key information while refreshing mp list."

You can resolve this with these steps:

On the advance client:
1. Start Run WBEMTEST
2. Click “connect” button
3. Enter the Namespace “root\ccm\locationservices”  -click connect.
4. Select Enum Classes, then on the “Superclass info”, select “Recursive” click OK
5. In the Query Result window, "TrustedRootKey” at the bottom.
6. On “Object editor for TrustedRootKey” window, click “Instances” button on the
right hand side
7. On Query Result window, highlight TrustedRootKey=@, and click on “DELETE”
button on the bottom
8. Close Query Result window
9. Stop/Start SMS Agent Host Service.

10.  If this is necessary on several clients, you might want consider scripting this.