Hello,
First of all sorry for my english.
I've got error 0x80072F8F when i try to use WSUS (that is in the internal network) on my DMZ's servers.
Wsus server is a Wsus 3.0 SP1 on Windows 2003 (SSL enabled on port 8531)
DMZ's servers are Windows 2008 R2
1 - I have installed the root certificate of my PKI on the trust root certificate store of the DMZ's servers
2 - I have modified the Hosts file of the DMZ's servers for name resolution of the internal WSUS server therefore the wsus web certificate subject match the Wsus URL of the DMZ's servers.
3 - I created firewall rule for open the communications on port 8531 between DMZ's servers and Wsus server
4 -I created firewall rule for the download of the Certificate revocation list (of the WSUS certificate) by the DMZ's servers
5 - I am able to download
https://wsusserver/selfupdate/wuident.cab and there is no certificate error
6 - I am able to dowload the CRL of the WSUS certificate
7 - There is no time difference between Wsus server and DMZ's servers
But after all that when i run a 'wuauclt /detectnow' the DMZ's servers failed on the SelfUpdate check with error 0x80072F8F
anyone have a idea ?
WindowsUpdate.log :
WARNING: Send failed with hr = 80072f8f.
WARNING: SendRequest failed with hr = 80072f8f. Proxy List used: <(null)> Bypass List used : <(null)> Auth Schemes used : <>
WARNING: WinHttp: SendRequestUsingProxy failed for <https://WSUSserver:8531/selfupdate/wuident.cab>. error 0x80072f8f
WARNING: WinHttp: SendRequestToServerForFileInformation MakeRequest failed. error 0x80072f8f
WARNING: WinHttp: SendRequestToServerForFileInformation failed with 0x80072f8f
WARNING: WinHttp: ShouldFileBeDownloaded failed with 0x80072f8f
FATAL: SelfUpdate check failed, err = 0x80072F8F
