locked
MP Control reporting Error 12175 Cert Date Invalid RRS feed

 > 

  • Question

  • Question
    Sign in to vote
    0
    Sign in to vote

    Hello,

    Hoping someone can assist.

    My SCCM Management Point is reporting the following errors

    WINHTTP_CALLBACK_STATUS_FLAG_CERT_DATE_INVALID 

    Call to HttpSendRequestSync failed for port 443 with 12175 error code

    I have published and assigned a new IIS cert and bound correctly.

    Externally to server the site shows valid certificate, however on the server itself it shows an expired certificate.

    Date/Time on Server is all ok.

    No expired Certs showing in Computer MY Store.

    Have tried to uninstall and reinstall MP role. - no difference.

    Root certs from on prem CA installed into SCCM.

    Confirmed that server also has a valid computer cert. 

    CRLs appear to be working ok on Cert Server.

    Build version 8692

    Am at a bit of a loss.

    Steven Wells

    Thursday, January 31, 2019 10:33 PM

Answers

  • Question
    Sign in to vote
    0
    Sign in to vote

    Ok, i have fixed the issue  

    There was an invalid cert bound to IP:port [::]:443, which is used for local host binding.

    I used Netsh delete sslcert ipport=[::]:443 and restarted IIS.

    Now my issue has gone away. 

    Steven Wells

    • Marked as answer by StevenWells99 Thursday, January 31, 2019 11:43 PM
    Thursday, January 31, 2019 11:43 PM

All replies

  • Question
    Sign in to vote
    0
    Sign in to vote
    Where exactly is this error shown?

    Jason | https://home.configmgrftw.com | @jasonsandys

    Thursday, January 31, 2019 11:16 PM
  • Question
    Sign in to vote
    0
    Sign in to vote

    Hi Jason,

    SCCM Is showing Critical Status in SMS_MP_CONTROL_MANAGER under Component Status and those errors above in the MPControl.log


    Steven Wells

    Thursday, January 31, 2019 11:29 PM
  • Question
    Sign in to vote
    0
    Sign in to vote 
    WINHTTP_CALLBACK_STATUS_SECURE_FAILURE~  $$<SMS_MP_CONTROL_MANAGER><02-01-2019 10:26:56.800-660><thread=8228 (0x2024)>
[BASEUTIL] AsyncCallback(): -----------------------------------------------------------------  $$<SMS_MP_CONTROL_MANAGER><02-01-2019 10:26:56.808-660><thread=8228 (0x2024)>
[BASEUTIL] AsyncCallback(): WINHTTP_CALLBACK_STATUS_SECURE_FAILURE Encountered  $$<SMS_MP_CONTROL_MANAGER><02-01-2019 10:26:56.815-660><thread=8228 (0x2024)>
[BASEUTIL]            : dwStatusInformationLength is 4~  $$<SMS_MP_CONTROL_MANAGER><02-01-2019 10:26:56.823-660><thread=8228 (0x2024)>
[BASEUTIL]            : *lpvStatusInformation is 0x20~  $$<SMS_MP_CONTROL_MANAGER><02-01-2019 10:26:56.830-660><thread=8228 (0x2024)>
[BASEUTIL]            : WINHTTP_CALLBACK_STATUS_FLAG_CERT_DATE_INVALID is set~  $$<SMS_MP_CONTROL_MANAGER><02-01-2019 10:26:56.838-660><thread=8228 (0x2024)>
CCMHTTP AsyncCallback(): -----------------------------------------------------------------  $$<SMS_MP_CONTROL_MANAGER><02-01-2019 10:26:56.845-660><thread=8228 (0x2024)>
Failed to send http request /SMS_MP/.sms_aut?MPLIST. Error 12175  $$<SMS_MP_CONTROL_MANAGER><02-01-2019 10:26:56.853-660><thread=8228 (0x2024)>
Call to HttpSendRequestSync failed for port 443 with 12175 error code.

    Steven Wells

    Thursday, January 31, 2019 11:30 PM
  • Question
    Sign in to vote
    0
    Sign in to vote

    Ok, i have fixed the issue  

    There was an invalid cert bound to IP:port [::]:443, which is used for local host binding.

    I used Netsh delete sslcert ipport=[::]:443 and restarted IIS.

    Now my issue has gone away. 

    Steven Wells

    • Marked as answer by StevenWells99 Thursday, January 31, 2019 11:43 PM
    Thursday, January 31, 2019 11:43 PM