question

yannara avatar image
0 Votes"
yannara asked maikeltimmermans-7885 commented

Compliance failing because Firewall not detected

Win10 cloud-only Intune managed, 1909 and 2004 devices. I get:

"Firewall Error -2016345612"
ERROR CODE
0x87d101f4
ERROR DETAILS
Syncml(500): The recipient encountered an unexpected condition which prevented it from fulfilling the request

I noticed that first when I create the compliance policy, it is green but after some usage, it turns to error. Seems like a bug. I use only Win10 protection, no 3rd party and Firewall is own and Security Center is green in Win10.

mem-intune-generalmem-intune-device-configurationsmem-intune-conditional-access
· 2
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Hi, I had the same issue with device compliance and the same error code. The way i fixed this was by pushing all updates and re-syncing from the user side. Settings > Accounts > access work or school > info button on your tenant > sync.

0 Votes 0 ·

Facing the same issue with our tenant too. Has anyone able to find the reason and fix for this please?

Regards
Aravinth M

0 Votes 0 ·
AndyLiu-MSFT avatar image
0 Votes"
AndyLiu-MSFT answered

It sounds like that this is a known issue, which has been discussed a lot on the Intune uservoice site.

Please click the following link for more details.

https://microsoftintune.uservoice.com/forums/291681-ideas/suggestions/36815068-intune-device-compliance-evaluation-not-stable-fa

To take a further investigation for this issue, I would recommend to create an online support ticket.

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

yannara avatar image
0 Votes"
yannara answered

Any chance that the Compliance should be applied to Users instead of Devices? Just for test, I removed the most problematic compliance from Devices, applied it to Users and I see slowly devices being green up.

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

yannara avatar image
0 Votes"
yannara answered

With Firewall and AV I am not sure, but I had bigger problem because I had on Compliance top level the deadline time set to 1 day, which means that if device is offline more than 1 day, it becomes non-compliant.

I did;
- Removed FW and AV
- Applied compliance policy back to devices instead of users
- CHanged from 1 day to 90 day on top level.

I will follow how this will go during the week, but so far so good.



5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

yannara avatar image
1 Vote"
yannara answered

Everything else works but Firewall detection does not (Windows firewall is in use here). This is clearly a bug.

SETTING
Firewall
STATE
Error
ERROR CODE
0x87d101f4
ERROR DETAILS
Syncml(500): The recipient encountered an unexpected condition which prevented it from fulfilling the request

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

SwatiArora-8223 avatar image
0 Votes"
SwatiArora-8223 answered

Hi Yannara,

We are facing similar issues, devices coming as not compliant or not evaluated. In compliance policy we are checking below:

  1. Anti spyware

  2. Anti Virus

  3. Microsoft defender anti malware

  4. Microsoft defender anti malware security intelligence up to date

  5. real time protection.

Turned off firewall checking but still the same issue.

Any advise please.



5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

StephenKerkmann-9285 avatar image
0 Votes"
StephenKerkmann-9285 answered StephenKerkmann-9285 published

Hi There. We have a similar problem. Was this issue resolved. Please share.

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

yannara avatar image
0 Votes"
yannara answered MikkelKnudsen-3362 edited

Hello. This issue was fixed by itself, but in new computers I see similar from time to time. Usually, when go to Company Portal and Devices, and check for access and compliance, the issue eventually gets fixed.

· 1
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Same issue here on Windows 11.

ERROR CODE
0x87d101f4
ERROR DETAILS
Syncml(500): The recipient encountered an unexpected condition which prevented it from fulfilling the request

Same issues as here :

https://www.reddit.com/r/Intune/comments/f37oi5/device_showing_not_compliant_but_is_compliant_oo/
https://www.reddit.com/r/Intune/comments/jg2sov/antivirus_syncml500_the_recipient_encountered_an/

0 Votes 0 ·
yannara avatar image
1 Vote"
yannara answered

I see this still happening a lot of new deployed computers and you need to kick compliance check via Company Portal.

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

GreggEmery-9575 avatar image
0 Votes"
GreggEmery-9575 answered

I got same error (-2016345612 & 0x87d101f4) with a Always On VPN user tunnel device configuration policy. Tried multiple intune manual syncs (Settings, Accounts, Access work or school, click AD domain, Info, Sync) & reboots & waiting 2hr yielded no change. I then deleted the Windows User Profile & when they logged back in to create new win user profile VPN & policy shows success no more errors

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

SebastianStegrin-1665 avatar image
1 Vote"
SebastianStegrin-1665 answered sanchezk-7495 commented

I can see this issue at multiple tenants too.
Have opened a Microsoft-case regarding this issue, so let's see where this takes me.

· 2
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

For info, Microsoft is still investigating my case regarding this.

0 Votes 0 ·

Please let us know the resolution if any. I also have random cases on multiple customer tenants. Thank you

2 Votes 2 ·