Andrewvctr
New Member
- Messages
- 1
- Reaction score
- 0
- Points
- 1
Hello All,
I have a problem with Imaging Devices using SCCM OSD.
I am using ConfigMgr Current Branch updated to 2207 Ver
SQL 2022 is on the same VM as SCCM and OS is 2022
all site roles and components show as healthy on the SCCM console.
I had previously this error line in the ccmsetup log "WINHTTP_CALLBACK_STATUS_FLAG_INVALID_CA is set" , when I was installing the SCCM client on pcs
and managed to get it sorted by importing the CA cert and the Subordinate cert in the site communication settings tab, also have to add the FQDN server name in the DNS field in the SCCM Server IIS cert and remove the Netbios name to get this issue fixed.
now I have the same error but in the smsts log while imaging pcs, pxe boot works fine and I can download the boot image and then reach the step of entering the DP password then it takes some time trying to retrieve the policy and then failed with the attached error.
Note: the Root CA is offline, and the Sub Ordinate CA is online, also I have imported both certs in the site communication settings tab.
so seems to me that during the PE phase, the pxe client does not accept the root CA.
can you help with that? have I missed something or shall I insert the root CA in the boot image in any way?
I have a problem with Imaging Devices using SCCM OSD.
I am using ConfigMgr Current Branch updated to 2207 Ver
SQL 2022 is on the same VM as SCCM and OS is 2022
all site roles and components show as healthy on the SCCM console.
I had previously this error line in the ccmsetup log "WINHTTP_CALLBACK_STATUS_FLAG_INVALID_CA is set" , when I was installing the SCCM client on pcs
and managed to get it sorted by importing the CA cert and the Subordinate cert in the site communication settings tab, also have to add the FQDN server name in the DNS field in the SCCM Server IIS cert and remove the Netbios name to get this issue fixed.
now I have the same error but in the smsts log while imaging pcs, pxe boot works fine and I can download the boot image and then reach the step of entering the DP password then it takes some time trying to retrieve the policy and then failed with the attached error.
Note: the Root CA is offline, and the Sub Ordinate CA is online, also I have imported both certs in the site communication settings tab.
so seems to me that during the PE phase, the pxe client does not accept the root CA.
can you help with that? have I missed something or shall I insert the root CA in the boot image in any way?
