What's new
Forums on Intune, SCCM, and Windows 11

Welcome to the forums. Register a free account today to become a member! Once signed in, you'll be able to participate on this site by adding your topics and posts, as well as connect with other members through your own private inbox!

PENDING MECM Software Center Can't See Apps Deployed to User Collections

O

OregonSteve

Member
Messages
6
Reaction score
0
Points
1
MECM Ver. 2403 Single Server
Hi- Everything was working as expected until my Network Services department did some config changes to the network. That was two weeks ago. Ever since I cannot see apps in Software Center that have been deployed to Users or User Collections. Any new clients don't see any apps that have been previously deployed. I've checked the SSL cert for the web server and the clients. As far as I can tell, are all valid.

The only error I can see in the SCClient_XXX.log file is the following:
GetApplicationsAsync: Could not establish trust relationship for the SSL/TLS secure channel with authority '<mecm.server.com>'.. Unable to fetch user categories, unknown communication problem.

Any guidance is greatly appreciated!

Kindest Regards
OregonSteve
"Never never doubt what nobody is sure about." -Willy Wonka
 
Sort by date Sort by votes
stuntguy3000 said:
What were the network changes? Can you use a tool like sslyze from a client to attempt the TLS connection (to validate)?
Click to expand...
I was just told by our Network Services that no changes were made to any protocols or ports. Could you share with me info on how to test the TLS connection? I've done quite a bit of Googling and the only results I find are how to enable it.

Thanx
OregonSteve
"Never never doubt what nobody is sure about." -Willy Wonka
 
Upvote 0 Downvote
OK, I found sslyze and this is the output related to TLS 1.2:

TLS 1.2 Cipher Suites:
Attempted to connect using 156 cipher suites.

The server accepted the following 15 cipher suites:
TLS_RSA_WITH_AES_256_GCM_SHA384 256
TLS_RSA_WITH_AES_256_CBC_SHA256 256
TLS_RSA_WITH_AES_256_CBC_SHA 256
TLS_RSA_WITH_AES_128_GCM_SHA256 128
TLS_RSA_WITH_AES_128_CBC_SHA256 128
TLS_RSA_WITH_AES_128_CBC_SHA 128
TLS_RSA_WITH_3DES_EDE_CBC_SHA 168
TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 256 ECDH: secp384r1 (384 bits)
TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384 256 ECDH: secp384r1 (384 bits)
TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA 256 ECDH: secp384r1 (384 bits)
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 128 ECDH: prime256v1 (256 bits)
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 128 ECDH: prime256v1 (256 bits)
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA 128 ECDH: prime256v1 (256 bits)
TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 256 DH (2048 bits)
TLS_DHE_RSA_WITH_AES_128_GCM_SHA256 128 DH (2048 bits)

The group of cipher suites supported by the server has the following properties:
Forward Secrecy OK - Supported
Legacy RC4 Algorithm OK - Not Supported

Thanx
OregonSteve
"Never never doubt what nobody is sure about." -Willy Wonka
 
Upvote 0 Downvote
You must log in or register to reply here.

Similar threads

  • PENDING Computers sleep after OSD
  • NEW Some Win11 Desktops Not Reporting as 11 in SCCM
  • PENDING Deploy Visual Studio Updates Using ConfigMgr
  • PENDING Software Update deployment windows dialog instead of toast notification
  • PENDING SCCM software update install error 0x8007139F

    • Forum statistics

    Threads
    7,070
    Messages
    27,624
    Members
    17,878
    Latest member
    drunkendogg

    Latest posts

    Trending content
    Back
    Top