My scenario:
We have a forest (Forest A) where SCCM 2019 is installed and this is being used to manage clients in this forest. AIso, we have another forest (Forest B). Our task is to deploy MP, DP, SUP role for untrusted Forest B.
After deploy MP in forest B we have an issues with client registration in forest B.
Below clients logs (forest B)
clientidmanagerstartup.log
[RegTask] - Client registration is pending. Server assigned ClientID is GUID:A41DBEC7-13BC-46BB-93FA-F2490CD208B7 ClientIDManagerStartup 06.05.2021 12:52:39 41544 (0xA248)
[RegTask] - Sleeping for 60 seconds ... ClientIDManagerStartup 06.05.2021 12:52:39 41544 (0xA248)
[RegTask] - Client registration is pending. Sending confirmation request for GUID:A41DBEC7-13BC-46BB-93FA-F2490CD208B7 ... ClientIDManagerStartup 06.05.2021 12:53:39 41544 (0xA248)
[RegTask] - Sleeping for 60 seconds ... ClientIDManagerStartup 06.05.2021 12:53:39 41544 (0xA248)
[RegTask] - Client registration is pending. Sending confirmation request for GUID:A41DBEC7-13BC-46BB-93FA-F2490CD208B7 ... ClientIDManagerStartup 06.05.2021 12:54:39 41544 (0xA248)
Log from installed MP (Forest B)
MPRegistrationManager.log
Encountered database error while verifying headers for client 'GUID:A41DBEC7-13BC-46BB-93FA-F2490CD208B7' (0x87d00238). MP_RegistrationManager 06.05.2021 12:52:39 4824 (0x12D8)
CCMValidateAuthHeaders failed (0x87d00238) to validate headers for client 'GUID:A41DBEC7-13BC-46BB-93FA-F2490CD208B7'. MP_RegistrationManager 06.05.2021 12:52:39 4824 (0x12D8)
MP Reg: DDR written to [C:\SMS\mp\outboxes\rdr.box\QC9TWVV3.RDR] for Client [GUID:A41DBEC7-13BC-46BB-93FA-F2490CD208B7] with identity [AD, S-1-5-21-3854551691-3923381134-2766934213-2611] Certificate Thumbprint [1E909AC40B667C49A2925646A413F2618591F4BA] MP_RegistrationManager 06.05.2021 12:52:39 4824 (0x12D8)
MP Reg: Processing completed. Completion state = 0 MP_RegistrationManager 06.05.2021 12:52:39 4824 (0x12D8)
MP Reg: Did not find client(GUID:CE3B3D6D-522F-4786-9996-66CB8B42856A) public key. This may be because the client has not registered yet. MP_RegistrationManager 06.05.2021 12:53:16 3712 (0x0E80)
MP Reg: Processing completed. Completion state = 0 MP_RegistrationManager 06.05.2021 12:53:16 3712 (0x0E80)
MP Reg: Did not find client(GUID:A41DBEC7-13BC-46BB-93FA-F2490CD208B7) public key. This may be because the client has not registered yet. MP_RegistrationManager 06.05.2021 12:53:39 3712 (0x0E80)
MP Reg: Processing completed. Completion state = 0 MP_RegistrationManager 06.05.2021 12:53:39 3712 (0x0E80)
Important notes:
We added one network interface for each forest on CM Servers ( forest A, Forest B). There is no DNS Server Conditional forwarding between Forest A and Forest B. Server with new MP (Forest B) can ping servers in forest A, CM Primary Site Server (Forest A) can ping servers in forest B. In addition we open the 135, 445, RPC ports between the MP server (Forest B) and the SCCM DB Server (Forest A). We also published MP in Forest B (HTTP). Boundary and boundary groups have been configured. We are able to install SCCM client from CM Server on client in Forest B. Client installed and working but in the SCCM console says Client = No.
Any suggestions would be very helpful. Thank you
We have a forest (Forest A) where SCCM 2019 is installed and this is being used to manage clients in this forest. AIso, we have another forest (Forest B). Our task is to deploy MP, DP, SUP role for untrusted Forest B.
After deploy MP in forest B we have an issues with client registration in forest B.
Below clients logs (forest B)
clientidmanagerstartup.log
[RegTask] - Client registration is pending. Server assigned ClientID is GUID:A41DBEC7-13BC-46BB-93FA-F2490CD208B7 ClientIDManagerStartup 06.05.2021 12:52:39 41544 (0xA248)
[RegTask] - Sleeping for 60 seconds ... ClientIDManagerStartup 06.05.2021 12:52:39 41544 (0xA248)
[RegTask] - Client registration is pending. Sending confirmation request for GUID:A41DBEC7-13BC-46BB-93FA-F2490CD208B7 ... ClientIDManagerStartup 06.05.2021 12:53:39 41544 (0xA248)
[RegTask] - Sleeping for 60 seconds ... ClientIDManagerStartup 06.05.2021 12:53:39 41544 (0xA248)
[RegTask] - Client registration is pending. Sending confirmation request for GUID:A41DBEC7-13BC-46BB-93FA-F2490CD208B7 ... ClientIDManagerStartup 06.05.2021 12:54:39 41544 (0xA248)
Log from installed MP (Forest B)
MPRegistrationManager.log
Encountered database error while verifying headers for client 'GUID:A41DBEC7-13BC-46BB-93FA-F2490CD208B7' (0x87d00238). MP_RegistrationManager 06.05.2021 12:52:39 4824 (0x12D8)
CCMValidateAuthHeaders failed (0x87d00238) to validate headers for client 'GUID:A41DBEC7-13BC-46BB-93FA-F2490CD208B7'. MP_RegistrationManager 06.05.2021 12:52:39 4824 (0x12D8)
MP Reg: DDR written to [C:\SMS\mp\outboxes\rdr.box\QC9TWVV3.RDR] for Client [GUID:A41DBEC7-13BC-46BB-93FA-F2490CD208B7] with identity [AD, S-1-5-21-3854551691-3923381134-2766934213-2611] Certificate Thumbprint [1E909AC40B667C49A2925646A413F2618591F4BA] MP_RegistrationManager 06.05.2021 12:52:39 4824 (0x12D8)
MP Reg: Processing completed. Completion state = 0 MP_RegistrationManager 06.05.2021 12:52:39 4824 (0x12D8)
MP Reg: Did not find client(GUID:CE3B3D6D-522F-4786-9996-66CB8B42856A) public key. This may be because the client has not registered yet. MP_RegistrationManager 06.05.2021 12:53:16 3712 (0x0E80)
MP Reg: Processing completed. Completion state = 0 MP_RegistrationManager 06.05.2021 12:53:16 3712 (0x0E80)
MP Reg: Did not find client(GUID:A41DBEC7-13BC-46BB-93FA-F2490CD208B7) public key. This may be because the client has not registered yet. MP_RegistrationManager 06.05.2021 12:53:39 3712 (0x0E80)
MP Reg: Processing completed. Completion state = 0 MP_RegistrationManager 06.05.2021 12:53:39 3712 (0x0E80)
Important notes:
We added one network interface for each forest on CM Servers ( forest A, Forest B). There is no DNS Server Conditional forwarding between Forest A and Forest B. Server with new MP (Forest B) can ping servers in forest A, CM Primary Site Server (Forest A) can ping servers in forest B. In addition we open the 135, 445, RPC ports between the MP server (Forest B) and the SCCM DB Server (Forest A). We also published MP in Forest B (HTTP). Boundary and boundary groups have been configured. We are able to install SCCM client from CM Server on client in Forest B. Client installed and working but in the SCCM console says Client = No.
Any suggestions would be very helpful. Thank you
