What's new
Forums on Intune, SCCM, and Windows 11

Welcome to the forums. Register a free account today to become a member! Once signed in, you'll be able to participate on this site by adding your topics and posts, as well as connect with other members through your own private inbox!

PENDING Installing SCCM Client using Token-based authentication and communication error

  • Thread starter Thread starter ontario20
  • Start date Start date
  • Replies Replies 2
  • Views Views 9K
Status
Not open for further replies.
O

ontario20

New Member
Messages
4
Solutions
1
Reaction score
0
Points
1
Case: Install SCCM Client in a DMZ server using Token-based authentication and Manage via CMG
  1. So generated the code based on the article provided here https://docs.microsoft.com/en-us/mem/configmgr/core/clients/deploy/deploy-clients-cmg-token
  2. Since we are using Internal PKI cert on CMG, I have exported the Root certificate and imported into DMZ server,
  3. Installation went fine and client was able to communicate well after the installation. It received all policies and able to push software updates/apps.
Problem Statement:
After some days/weeks SCCM client suddenly stopped communicating with CMG. The errors I am seeing in
CCMmessaging.log
Failed to get CCM access token and client doesn't have PKI issued cert to use SSL. Error 0x87d0027e. I am not sure if I am missing something here
2022-05-10_16-09-12.png
 
Sort by date Sort by votes
ontario20 said:
Case: Install SCCM Client in a DMZ server using Token-based authentication and Manage via CMG
  1. So generated the code based on the article provided here https://docs.microsoft.com/en-us/mem/configmgr/core/clients/deploy/deploy-clients-cmg-token
  2. Since we are using Internal PKI cert on CMG, I have exported the Root certificate and imported into DMZ server,
  3. Installation went fine and client was able to communicate well after the installation. It received all policies and able to push software updates/apps.
Problem Statement:
After some days/weeks SCCM client suddenly stopped communicating with CMG. The errors I am seeing in
CCMmessaging.log
Failed to get CCM access token and client doesn't have PKI issued cert to use SSL. Error 0x87d0027e. I am not sure if I am missing something here
View attachment 4546
Click to expand...
I am having the same issue. Works fine for a couple of weeks, then some internet clients stop showing as online even though they are, have similar errors in CcmMessaging.log, ClientLocation.log. Did you ever find out why this is happening?
 
Upvote 0 Downvote
I generated and installed a client auth cert on the client in question. Restarted ccmexec and the cert gets validated and used and now the client is showing as online. So something with using tokens only was broken, but what and why? it worked when I first installed the client, and is still working for some of the other clients in the same configuration.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

  • CM 2509 - AdminService now rejects NTLM authentication
  • Service Connection Tool improvements in SCCM 2509
  • PENDING SCCM setup faild due to Error: 0x80200010
  • PENDING SCCM imaging issue
  • PENDING Distribution Manager failed to access the source directory

    • Forum statistics

    Threads
    7,159
    Messages
    27,945
    Members
    18,241
    Latest member
    ljrb

    Latest posts

    Trending content
    Back
    Top