This forum has migrated to Microsoft Q&A. Visit Microsoft Q&A to post new questions.

Remove From My Forums

Issues with client check in

Question
0

Sign in to vote

Hello All,

Recently i had to disable the HTTPS PKI settings due to an issue when i replaced some DCs in a trusted domain. Disabling the PKI settings allowed those clients to check in and get updates like they should. For some reason this is causing issues with client that are in a particular subnet.

This subnet has been in the boundary group already and there are not firewall rules that are blocking this communication. It looks like its seeing the proper server it should be connecting to and that its no longer using a PKI cert. The ccmsetup log is telling me that its going through the reinstall process, but seems to stop after it deletes most of the local files. Is there another log i could post that would be more helpful?

Ive been reading online that i might need to reinstall the management point role but i would like to avoid that if i can.

Last thing, there are PCs in that subnet that connect to remotely and they seem to check in for some reason so im stumped why that would make a difference since that VPN subnet is not a boundary that ive created.

Thanks in advance!
<style></style>

Monday, July 27, 2020 1:09 PM

All replies

0

Sign in to vote

If some clients are connecting properly then the management point is probably working fine.

I take it mplist and mpcert check out fine.

https://www.enhansoft.com/how-to-test-your-mp-to-confirm-if-it-is-healthy/

What does the ccmsetup.log fail with.
Richard Knight | Collection Refresh Manager | Automate detection rules for patch \ msp files | Twitter

Monday, July 27, 2020 6:38 PM
0

Sign in to vote

Hi,

>The ccmsetup log is telling me that its going through the reinstall process, but seems to stop after it deletes most of the local files.
What is the specific error in the ccmsetup log?

Regards,
Allen
Please remember to mark the replies as answers if they help.

If you have feedback for TechNet Subscriber Support, contact tnmff@microsoft.com.

Tuesday, July 28, 2020 9:07 AM
0

Sign in to vote

Here is the log output.

Found a valid online MP 'vm-fb-sccm01.domain.com'.
Raising event:
instance of CCM_CcmHttp_Status
{
DateTime = "20200728154916.545000+000";
HostName = "vm-fb-sccm01.domain.com";
HRESULT = "0x00000000";
ProcessID = 13264;
StatusCode = 0;
ThreadID = 3496;
};
Failed to submit event to the Status Agent. Attempting to create pending event.
Raising pending event:
instance of CCM_CcmHttp_Status
{
DateTime = "20200728154916.545000+000";
HostName = "vm-fb-sccm01.domain.com";
HRESULT = "0x00000000";
ProcessID = 13264;
StatusCode = 0;
ThreadID = 3496;
};
Successfully submitted pending event to WMI.
Searching for DP locations from MP(s)...
Finished checking Alternate Network Configuration
Adapter {C0C9A944-CBC8-4C52-96FB-BD46EC7B3500} is DHCP enabled. Checking quarantine status.
Begin checking Alternate Network Configuration
CCMSETUP bootstrap from Internet: 0
Current AD site of machine is CH
DhcpGetOriginalSubnetMask entry point is supported.
[CCMHTTP] ERROR INFO: StatusCode=200 StatusText=
[CCMHTTP] ERROR: URL=http://vm-fb-sccm01.domain.com/ccm_system/request, Port=80, Options=1216, Code=12152, Text=ERROR_WINHTTP_INVALID_SERVER_RESPONSE
Failed in WinHttpReceiveResponse API, ErrorCode = 0x2f78
Created connection on port 80
ccmsetup: Host=vm-fb-sccm01.domain.com, Path=/ccm_system/request, Port=80, Protocol=http, CcmTokenAuth=0, Flags=0x14101, Options=0x4c0
Trying without proxy.
Client is not on internet
MapNLMCostDataToCCMCost() returning Cost 0x1
Sending location request to 'vm-fb-sccm01.domain.com' with payload '<ContentLocationRequest SchemaVersion="1.00" BGRVersion="1">
<AssignedSite SiteCode="COF"/>
<ClientPackage RequestForLatest="0" DeploymentFlags="4098"/>
<ClientLocationInfo LocationType="SMSPACKAGE" DistributeOnDemand="0" UseProtected="0" AllowCaching="0" BranchDPFlags="0" AllowHTTP="1" AllowSMB="0" AllowMulticast="0" UseAzure="1" DPTokenAuth="1" UseInternetDP="0">
<ADSite Name="CH"/>
<Forest Name="domain.com"/>
<Domain Name="domain.com"/>
<IPAddresses>
<IPAddress SubnetAddress="192.168.2.0" Address="192.168.2.161"/>
</IPAddresses>
</ClientLocationInfo>
</ContentLocationRequest>'
Sending message body '<ContentLocationRequest SchemaVersion="1.00" BGRVersion="1">
<AssignedSite SiteCode="COF"/>
<ClientPackage RequestForLatest="0" DeploymentFlags="4098"/>
<ClientLocationInfo LocationType="SMSPACKAGE" DistributeOnDemand="0" UseProtected="0" AllowCaching="0" BranchDPFlags="0" AllowHTTP="1" AllowSMB="0" AllowMulticast="0" UseAzure="1" DPTokenAuth="1" UseInternetDP="0">
<ADSite Name="CH"/>
<Forest Name="domain.com"/>
<Domain Name="domain.com"/>
<IPAddresses>
<IPAddress SubnetAddress="192.168.2.0" Address="192.168.2.161"/>
</IPAddresses>
</ClientLocationInfo>
</ContentLocationRequest>'
Client is set to use webproxy if available.
Current AD forest name is domain.com, domain name is domain.com
Finished checking Alternate Network Configuration
Adapter {C0C9A944-CBC8-4C52-96FB-BD46EC7B3500} is DHCP enabled. Checking quarantine status.
DHCP entry points already initialized.
Current AD site of machine is CH
Domain joined client is in Intranet
CCMSETUP bootstrap from Internet: 0
Begin checking Alternate Network Configuration
GetDPLocations failed with error 0x80072f78
Failed to send location message to 'vm-fb-sccm01.domain.com'. Status text ''
Failed (0x80072f78) to send location request to 'vm-fb-sccm01.domain.com'. StatusCode 200, StatusText ''
Successfully submitted pending event to WMI.

<style><br _moz_dirty="" /></style>

Tuesday, July 28, 2020 3:54 PM
0

Sign in to vote

Hi,

>GetDPLocations failed with error 0x80072f78
DP's are located by querying the MP so this is the result code from querying the MP. Have you reviewed the MP logs on the MP, \SMS_CCM\Logs directory, name MP_Location.log.

Regards,
Allen
Please remember to mark the replies as answers if they help.

If you have feedback for TechNet Subscriber Support, contact tnmff@microsoft.com.

Friday, July 31, 2020 8:40 AM
0

Sign in to vote

Below is what i have been seeing in that log. Im not sure if this is normal or not..

Its also not for the subnet in question.

fnMP_GetBoundaryGroupsXML (<ClientLocationInfo OnInternet="0"><ADSite Name="DEFAULT-FIRST-SITE"/><Forest Name="domain.com"/><Domain Name="domain.com"/><IPAddresses><IPAddress SubnetAddress="192.168.3.0" Address="192.168.3.44"/></IPAddresses><BoundaryGroups BoundaryGroupListRetrieveTime="2020-08-03T04:35:59.843"><BoundaryGroup GroupID="16777218" GroupGUID="c927887f-df38-44ee-8bb7-bcba1a86331b" GroupFlag="0"/></BoundaryGroups></ClientLocationInfo>)
UID not found
MP_GetSiteInfoUnifiedBGRWSUS (<ClientLocationInfo OnInternet="0"><ADSite Name="DEFAULT-FIRST-SITE"/><Forest Name="domain.com"/><Domain Name="domain.com"/><IPAddresses><IPAddress SubnetAddress="192.168.3.0" Address="192.168.3.44"/></IPAddresses><BoundaryGroups BoundaryGroupListRetrieveTime="2020-08-03T04:35:59.843"><BoundaryGroup GroupID="16777218" GroupGUID="c927887f-df38-44ee-8bb7-bcba1a86331b" GroupFlag="0"/></BoundaryGroups></ClientLocationInfo>,<BoundaryGroups BoundaryGroupListRetrieveTime="2020-08-03T04:35:59.843"><BoundaryGroup GroupID="16777218" GroupGUID="c927887f-df38-44ee-8bb7-bcba1a86331b" GroupFlag="0"/></BoundaryGroups>,COF,0x0)
No package ID
retreiving the certificates
No package ID
retreiving the certificates
retreiving the certificates
No package ID
No package ID
retreiving the certificates
No package ID
retreiving the certificates
No package ID
retreiving the certificates
No package ID
retreiving the certificates
No package ID
retreiving the certificates
retreiving the certificates
No package ID
No package ID
retreiving the certificates

<style><br _moz_dirty="" /></style>

Monday, August 3, 2020 1:43 PM