Veeam Agent for Microsoft Windows deploy fails with “Failed to call RPC function 'PckgCheckSignature': Signature of module 'C:\ProgramData\Veeam\Agents\VAW\Veeam_B&R_Endpoint_x64.msi' is invalid"

Challenge

When a computer is being added to protection group, Veeam Agent for Microsoft Windows deployment starts and  fails with the following:
 

Warning Failed to create agent manager {IEpAgentManagementProtocol} (Agent: image-01, SessionName: PackageInstall): No connection could be made because the target machine actively refused it IPAddress:6185 Info [UploadManager] Checking windows package 'C:\ProgramData\Veeam\Agents\VAW\Veeam_B&R_Endpoint_x64.msi' signature on host 'HOSTNAME'Error Failed to call RPC function 'PckgCheckSignature': Signature of module 'C:\ProgramData\Veeam\Agents\VAW\Veeam_B&R_Endpoint_x64.msi' is invalid.. InParams: '<InputArguments><ModulePath value="C:\ProgramData\Veeam\Agents\VAW\Veeam_B&R_Endpoint_x64.msi" /></InputArguments>'. Error Signature of module 'C:\ProgramData\Veeam\Agents\VAW\Veeam_B&R_Endpoint_x64.msi' is invalid Error --tr:Failed to call DoRpc. CmdName: [PckgCheckSignature]. (System.Runtime.InteropServices.COMException)

Cause

The certificate which is used to sign the Veeam Agent installation package is not installed in the Trusted Root Certification Authority store on the client computer.

Solution

1. Download DigiCert Assured ID Root CA here (right click on Download button - save as)
2. Double click the downloaded .srt file
3. Click Install Certificate
4. Choose Local Machine and click on Next
5. Place the certificate into Trusted Root Certification Authorities by clicking the Browse button.