Skip to content
By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post
About re:Post

How do I resolve a Windows activation fail message on my EC2 Windows instance?

4 minute read
1

I want to resolve a Windows activation fail message on my Amazon Elastic Compute Cloud (Amazon EC2) Windows instance.

Short description

For activation, Windows instances use Microsoft Key Management Service (Microsoft KMS) on AWS. If your instance can't reach the Microsoft KMS server, then you might receive a Windows activation error message. For more information, see Understanding KMS on the Microsoft Learn website.

Resolution

To resolve a Windows activation failure on an Amazon EC2 instance, complete one of the following tasks:

Use a Systems Manager Automation document to activate Windows

The AWSSupport-ActivateWindowsWithAmazonLicense automation document activates an EC2 Windows instance with an Amazon-provided license. The automation checks the current status of Windows for your instance. If the status is inactive, then the automation activates Windows.

Note: You can't use the AWSSupport-ActivateWindowsWithAmazonLicense automation document to activate Bring Your Own License (BYOL) Windows instances. To use your own license, see Microsoft licensing on AWS.

To use a Systems Manager Automation document to activate Windows, complete the following steps:

  1. Open the Systems Manager console.
    Note: Select the same AWS Region as the EC2 Windows instance that you must activate.
  2. In the navigation pane, choose Automation, and then choose Execute automation.
  3. In the search field, enter ActivateWindowsWithAmazonLicense.
  4. Select the AWSSupport-ActivateWindowsWithAmazonLicense Automation document, and then choose Next.
  5. For Execute automation document, choose Simple execution.
  6. For Input parameters, turn on Show interactive instance picker.
  7. Choose your EC2 instance. If you don't see your instance in the list, then take the following actions:
    Configure Systems Manager for your EC2 instance.
    -or-
    If you can't configure Systems Manager, or if the instance isn't available for Input parameters, then turn off Show interactive instance picker.
    For InstanceID, enter the ID for your EC2 instance.
    For AllowOffline, choose True.
    Note: If you set AllowOffline to True, then your EC2 instance stops and then restarts. After Amazon EC2 restarts, it deletes the data in your instance store volumes. Also, if you don't use an Elastic IP address, then your public IP address changes.
  8. Choose Execute.

To monitor Systems Manager's progress, complete the following steps:

  1. Open the Systems Manager console.
  2. From the navigation pane, choose Automation.
  3. Choose the running automation, and then choose Executed steps.
  4. To view the automation's output, choose Outputs.

Manually activate Windows

Based on your Windows Server version that your instance uses, and the Amazon EC2 configuration tool, complete the following steps:

Windows Server 2016 or 2019

  1. Install the latest version of EC2Launch v1.

  2. Open PowerShell as an administrator.

  3. Import the EC2Launch module:

    Import-Module "C:\ProgramData\Amazon\EC2-Windows\Launch\Module\Ec2Launch.psd1"

  4. Add the routes:

    Add-Routes

  5. Set the activation settings:

    Set-ActivationSettings

  6. Activate Windows:

    slmgr /ato

Windows Server 2022 or instances with EC2Launch v2 installed

  1. Install the latest version of EC2Launch v2.
    Note: By default, instances that use Windows Server 2022 include EC2Launch v2.

  2. Open PowerShell as an administrator.

  3. Restart EC2Launch v2:

    Net Restart "Amazon EC2Launch"

    Note: When EC2Launch v2 restarts, it automatically resets the operating system (OS)-level routes.

  4. If Windows doesn't activate, then check the network communication from the instance to the Microsoft KMS server.

  5. Run telnet from your EC2 instance to the Microsoft KMS servers, and then open PowerShell.

  6. Run the following commands:

    Test-netconnection 169.254.169.250 -Port 1688  
Test-netconnection 169.254.169.251 -Port 1688

  7. Confirm that the connection status output is TcpTestSuccessed=True. If the connection status output is False, then verify that the following registry keys have the correct Microsoft KMS values:

    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows  
NT\CurrentVersion\SoftwareProtectionPlatform  
KeyManagementServiceName - 169.254.169.250  
KeyManagementServicePort - 1688

    Note: You can also enter 169.254.169.251 as the KeyManagementServiceName value.

  8. Run the Test-netconnection commands again. If the connection status output is False, then check the Amazon Time Sync Service on your EC2 instance. For more information, see Precision clock and time synchronization on your EC2 instance.

Troubleshoot an "Unable to Activate Windows" error

If you launch a Windows instance from an Amazon Elastic Block Store (Amazon EBS) snapshot, then you might receive the following error message:

"A problem occurred when Windows tried to activate. Error Code 0xC004F074"

To troubleshoot this error, see "Unable to activate Windows".

Related information

EC2Config settings files

Upgrade PV drivers on EC2 Windows instances

How do I troubleshoot time issues with my EC2 Windows instance?

Topics
End User ComputingCompute
Tags
Amazon EC2AWS Support Automation WorkflowsWindows
Language
English

Related videos

Watch Claudio's video to learn more (6:15)
Watch Claudio's video to learn more (6:15)
AWS OFFICIALUpdated 7 months ago
No comments

Relevant content