Event ID 1098: Error 0xCAA5001C, Token broker operation failed
This issue occurs if there are missing permissions or ownership attributes on one or both of the following Registry keys: Match the SID reported for the user in event ID 1098 to the path under HKEY_USERS. In this case, it is- To resolve this issue, do the following:
- Take ownership of the key if necessary (Owner = SYSTEM).
- Fix the permissions on these registry keys shown above by enabling inheritance (fixing one should fix both unless multiple users log on to the same device). See the image below: If you view the permissions of the ~\PSR Registry key under HKEY_USERS{SID}, the Inherited from field shows inheritance from the HKEY_USERS{SID} path. If this does not resolve the issue, consider running Process Monitor while performing the authentication method to look for ACCESS DENIED in other areas of the Registry or file system that could be causing the authentication failure. This issue may affect the Windows Store for Business as well as Enterprise State Roaming.
