question

DucheminDominique-7551 avatar image
0 Votes"
DucheminDominique-7551 asked Amandayou-MSFT commented

Client not communicating anymore

Hello,

MEMCM: 2010 + KB4594177
Client: 5.00.9040.1015
Operating System: Microsoft Windows Server 6.3 (Windows Server 2012 R2)
Build Number: 6.3.9600.19873

I have several clients which were working fine previously in CM 2006 but now I have an error in the ccmsetup.log

The Certificate [Thumbprint 3E2A266B45FDE6632CDC6A568009B25B8D0F9243] issued to 'VRTPYXIS1.ad' has 'Client Authentication' capability.

Completed validation of Certificate [Thumbprint 3E2A266B45FDE6632CDC6A568009B25B8D0F9243] issued to ' VRTPYXIS1.ad'

Client selected the PKI Certificate [Thumbprint 3E2A266B45FDE6632CDC6A568009B25B8D0F9243] issued to 'VRTPYXIS1.ad'

Raising pending event:
instance of CCM_ServiceHost_CertRetrieval_Status
{
ClientID = "GUID:0D23044C-8E08-4B1E-A91B-4EB4849A41FA";
DateTime = "20210316154021.339000+000";
HRESULT = "0x00000000";
ProcessID = 11476;
ThreadID = 8200;
};
Successfully submitted pending event to WMI.
ccmsetup: Host= VRPSCCMMS03.ad, Path=/CCM_Client, Port=443, Protocol=https, CcmTokenAuth=0, Flags=0x4300, Options=0x1e0
Created connection on port 443
Enabled SSL revocation check.
Trying without proxy.
[CCMHTTP] AsyncCallback(): -----------------------------------------------------------------
[CCMHTTP] AsyncCallback(): WINHTTP_CALLBACK_STATUS_SECURE_FAILURE Encountered
[CCMHTTP] : dwStatusInformationLength is 4
[CCMHTTP] : *lpvStatusInformation is 0x1
[CCMHTTP] : WINHTTP_CALLBACK_STATUS_FLAG_CERT_REV_FAILED is set
[CCMHTTP] AsyncCallback(): -----------------------------------------------------------------
Raising event:
instance of CCM_CcmHttp_Status
{
ClientID = "GUID:0D23044C-8E08-4B1E-A91B-4EB4849A41FA";
DateTime = "20210316154021.448000+000";
HostName = " VRPSCCMMS03.ad";
HRESULT = "0x80072f8f";
ProcessID = 11476;
StatusCode = 1;
ThreadID = 8200;
};
Failed to submit event to the Status Agent. Attempting to create pending event.
Raising pending event:
instance of CCM_CcmHttp_Status
{
ClientID = "GUID:0D23044C-8E08-4B1E-A91B-4EB4849A41FA";
DateTime = "20210316154021.448000+000";
HostName = " VRPSCCMMS03.ad";
HRESULT = "0x80072f8f";
ProcessID = 11476;
StatusCode = 1;
ThreadID = 8200;
};
Successfully submitted pending event to WMI.
Failed in WinHttpSendRequest API, ErrorCode = 0x2f8f
[CCMHTTP] ERROR: URL=HTTPS:// VRPSCCMMS03.ad/CCM_Client, Port=443, Options=480, Code=12175, Text=ERROR_WINHTTP_SECURE_FAILURE
[CCMHTTP] ERROR INFO: StatusCode=<unknown> StatusText=
GetDirectoryList failed with a non-recoverable failure, 0x80072f8f
Failed to get directory list from 'HTTPS:// VRPSCCMMS03.ad/CCM_Client'. Error 0x80072f8f
Failed to correctly receive a WEBDAV HTTPS request.. (StatusCode at WinHttpQueryHeaders: 0) and StatusText: ''
Failed to check url HTTPS:// VRPSCCMMS03.ad/CCM_Client/ccmsetup.cab. Error 0x80004005
Accessing the URL 'HTTPS:// VRPSCCMMS03.ad/CCM_Client/ccmsetup.cab' failed with 80004005
Checking the URL 'HTTPS:// VRPSCCMPR01.ad/CCM_Client/ccmsetup.cab'
Client is not on internet
Client is set to use webproxy if available.

Blockquote


LocationServices.log


Default Management Points from AD:

Name: ' VRPSCCMPR01.ad' HTTPS: 'Y' ForestTrust: 'N'
Name: ' VRPSCCMMS03.ad' HTTPS: 'Y' ForestTrust: 'N'
Persisting the default management points in WMI
2 assigned MP errors in the last 10 minutes, threshold is 5.
Current AD site of machine is RRH
Failed to send management point list Location Request Message to VRPSCCMPR01.ad
Current AD site of machine is RRH
Failed to send management point list Location Request Message to VRPSCCMMS03.ad
Persisted Default Management Point Locations locally
3 assigned MP errors in the last 10 minutes, threshold is 5.
Attempting to retrieve local MPs from the assigned MP

Blockquote

The port 443 is opened for the Client VRTPYXIS1 to the two site servers VRPSCCMPR01 & VRPSCCMMS03.
78355-vrtpyxis1-ccmclient.png
78383-vrtpyxis1-ccm-client-ms03.png

Windows Firewall is OFF
78344-2021-03-16-9-29-29-vrtpyxis1-windows-firewall.png


This machine is 10.6.193.53 and the next one 10.6.193.54 works like a charm.... so the firewall does looks an issue anymore...

78496-2021-03-16-18-27-39-vrtpyxis1-cert.png
The certificate looks good, CRL also...

Any other log which could gives more clues...

Thanks,
Dom


mem-cm-generalmem-cm-site-deployment
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

1 Answer

Amandayou-MSFT avatar image
0 Votes"
Amandayou-MSFT answered Amandayou-MSFT commented

Hi @DucheminDominique-7551

Failed in WinHttpSendRequest API, ErrorCode = 0x2f8f

[CCMHTTP] ERROR: URL=HTTPS:// VRPSCCMMS03.ad/CCM_Client, Port=443, Options=480, Code=12175, Text=ERROR_WINHTTP_SECURE_FAILURE

Please check if SSL certificate is bound in https and port 443, if not, please binding it and check if the problem is fixed.

Here is the screenshot we could refer to:
78724-317.png



If the response is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.



317.png (182.4 KiB)
· 1
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Hi,

May we know the current status of the question? If there is any other assistance we can provide, please feel free to let us know, we will do our best to help you.

Best regards,
Amanda You

0 Votes 0 ·