K
kvncrr
Guest
I'm stumped with this one. Our prep team is having trouble with OSD, and I've noticed many/most clients show disconnected in the console while some still show connected. I've had a similar problem like this before, and it turned out to be an expired cert, but that doesn't seem to be the case this time, and I'm at a loss on how to find the problem and fix it. I would greatly appreciate your help!
I have two MP's (and a third on an IBCM server, but we don't care about that now). IIS logs show successful connections (200). Previously I would see 443 indicating an error, but now so now.
I tried MP tests as described by Garth here (https://www.enhansoft.com/how-to-test-your-mp-to-confirm-if-it-is-healthy/) and they succeed on the site server and MP's, but on my workstation I'm prompted to select one of two certs. If I select the top one issued by MS-Organization-Access, I get a 403 error. If I select the bottom one from our internal CA, the connection goes through. I think the problem lies here, but I'm not sure where the MS-Organization-Access cert is coming from. It's not in Personal > Certificates in cert store.
When problem first started, I had Critical status for SMS_MP_CONTROL_MANAGER on both site servers. I know it's not usually recommended, but out of desperation I reinstalled MP roles on the site servers. Now, one shows OK and the other shows Warning, but it's the typical "MP has rejected a message from GUID" messages so I don't think there's anything to look at here. Other component with Critical status right now are SMS_PORTALWEB_CONTROL_MANAGER and SMS_AWEBSVC_CONTROL_MANAGER, but I'm not sure if they're worth looking at right now.
Thanks for any direction you can offer.
I have two MP's (and a third on an IBCM server, but we don't care about that now). IIS logs show successful connections (200). Previously I would see 443 indicating an error, but now so now.
I tried MP tests as described by Garth here (https://www.enhansoft.com/how-to-test-your-mp-to-confirm-if-it-is-healthy/) and they succeed on the site server and MP's, but on my workstation I'm prompted to select one of two certs. If I select the top one issued by MS-Organization-Access, I get a 403 error. If I select the bottom one from our internal CA, the connection goes through. I think the problem lies here, but I'm not sure where the MS-Organization-Access cert is coming from. It's not in Personal > Certificates in cert store.
When problem first started, I had Critical status for SMS_MP_CONTROL_MANAGER on both site servers. I know it's not usually recommended, but out of desperation I reinstalled MP roles on the site servers. Now, one shows OK and the other shows Warning, but it's the typical "MP has rejected a message from GUID" messages so I don't think there's anything to look at here. Other component with Critical status right now are SMS_PORTALWEB_CONTROL_MANAGER and SMS_AWEBSVC_CONTROL_MANAGER, but I'm not sure if they're worth looking at right now.
Thanks for any direction you can offer.
