locked
MP Control reporting Error 12175 Cert Date Invalid RRS feed

  • Question

  • Hello,

    Hoping someone can assist.

    My SCCM Management Point is reporting the following errors

    WINHTTP_CALLBACK_STATUS_FLAG_CERT_DATE_INVALID 

    Call to HttpSendRequestSync failed for port 443 with 12175 error code

    I have published and assigned a new IIS cert and bound correctly.

    Externally to server the site shows valid certificate, however on the server itself it shows an expired certificate.

    Date/Time on Server is all ok.

    No expired Certs showing in Computer MY Store.

    Have tried to uninstall and reinstall MP role. - no difference.

    Root certs from on prem CA installed into SCCM.

    Confirmed that server also has a valid computer cert. 

    CRLs appear to be working ok on Cert Server.

    Build version 8692

    Am at a bit of a loss.


    Steven Wells

    Thursday, January 31, 2019 10:33 PM

Answers

  • Ok, i have fixed the issue  

    There was an invalid cert bound to IP:port [::]:443, which is used for local host binding.

    I used Netsh delete sslcert ipport=[::]:443 and restarted IIS.

    Now my issue has gone away. 


    Steven Wells

    • Marked as answer by StevenWells99 Thursday, January 31, 2019 11:43 PM
    Thursday, January 31, 2019 11:43 PM

All replies

  • Where exactly is this error shown?

    Jason | https://home.configmgrftw.com | @jasonsandys

    Thursday, January 31, 2019 11:16 PM
  • Hi Jason,

    SCCM Is showing Critical Status in SMS_MP_CONTROL_MANAGER under Component Status and those errors above in the MPControl.log



    Steven Wells

    Thursday, January 31, 2019 11:29 PM
  • WINHTTP_CALLBACK_STATUS_SECURE_FAILURE~  $$<SMS_MP_CONTROL_MANAGER><02-01-2019 10:26:56.800-660><thread=8228 (0x2024)>
    [BASEUTIL] AsyncCallback(): -----------------------------------------------------------------  $$<SMS_MP_CONTROL_MANAGER><02-01-2019 10:26:56.808-660><thread=8228 (0x2024)>
    [BASEUTIL] AsyncCallback(): WINHTTP_CALLBACK_STATUS_SECURE_FAILURE Encountered  $$<SMS_MP_CONTROL_MANAGER><02-01-2019 10:26:56.815-660><thread=8228 (0x2024)>
    [BASEUTIL]            : dwStatusInformationLength is 4~  $$<SMS_MP_CONTROL_MANAGER><02-01-2019 10:26:56.823-660><thread=8228 (0x2024)>
    [BASEUTIL]            : *lpvStatusInformation is 0x20~  $$<SMS_MP_CONTROL_MANAGER><02-01-2019 10:26:56.830-660><thread=8228 (0x2024)>
    [BASEUTIL]            : WINHTTP_CALLBACK_STATUS_FLAG_CERT_DATE_INVALID is set~  $$<SMS_MP_CONTROL_MANAGER><02-01-2019 10:26:56.838-660><thread=8228 (0x2024)>
    CCMHTTP AsyncCallback(): -----------------------------------------------------------------  $$<SMS_MP_CONTROL_MANAGER><02-01-2019 10:26:56.845-660><thread=8228 (0x2024)>
    Failed to send http request /SMS_MP/.sms_aut?MPLIST. Error 12175  $$<SMS_MP_CONTROL_MANAGER><02-01-2019 10:26:56.853-660><thread=8228 (0x2024)>
    Call to HttpSendRequestSync failed for port 443 with 12175 error code.


    Steven Wells

    Thursday, January 31, 2019 11:30 PM
  • Ok, i have fixed the issue  

    There was an invalid cert bound to IP:port [::]:443, which is used for local host binding.

    I used Netsh delete sslcert ipport=[::]:443 and restarted IIS.

    Now my issue has gone away. 


    Steven Wells

    • Marked as answer by StevenWells99 Thursday, January 31, 2019 11:43 PM
    Thursday, January 31, 2019 11:43 PM