MicrosoftCloudRegKey
Member
- Messages
- 5
- Reaction score
- 0
- Points
- 1
We upgraded our SCCM server from 2211 to 2309 and now 2 of our servers are getting that message:
MP has rejected a message... because the signature could not be validated.
The servers go offline in SCCM because MP is rejecting the message. However what I have noticed is that the servers do come online maybe 10~ minutes later and they will accept requests / successfully deliver messages, etc. And maybe 10-20 minutes later go offline and repeat the above.
I looked at the logs on the machine itself and the only error I can find specifically is in the CCMNotificationAgent log:
[CCMHTTP] ERROR: URL=https://... url to our server TEXT=CCM_E_BAD_HTTP_STATUS_CODE
[CCMHTTP] ERROR INFO: StatusCode=990 StatusText=BGB Session Ended
These appear in the logs multiple times during the time the MP rejects the message, and after 10 minutes, everything is working again and the CCMNotificationAgentlogs show that it was able to connect and no issues..
I restarted CccmExec on each server and verified the PKI cert it is pointing to in the logs is the correct cert. Which makes sense because these machines CAN communicate on and off and if the cert itself was bad, I imagine there would be zero communication.
This happened right after the upgrade of the server, no changes on these machines itself were done... thoughts?
MP has rejected a message... because the signature could not be validated.
The servers go offline in SCCM because MP is rejecting the message. However what I have noticed is that the servers do come online maybe 10~ minutes later and they will accept requests / successfully deliver messages, etc. And maybe 10-20 minutes later go offline and repeat the above.
I looked at the logs on the machine itself and the only error I can find specifically is in the CCMNotificationAgent log:
[CCMHTTP] ERROR: URL=https://... url to our server TEXT=CCM_E_BAD_HTTP_STATUS_CODE
[CCMHTTP] ERROR INFO: StatusCode=990 StatusText=BGB Session Ended
These appear in the logs multiple times during the time the MP rejects the message, and after 10 minutes, everything is working again and the CCMNotificationAgentlogs show that it was able to connect and no issues..
I restarted CccmExec on each server and verified the PKI cert it is pointing to in the logs is the correct cert. Which makes sense because these machines CAN communicate on and off and if the cert itself was bad, I imagine there would be zero communication.
This happened right after the upgrade of the server, no changes on these machines itself were done... thoughts?
