Hi Prajawal, been having this issue for a while now.
Basically client in Boundaries/DPS that are not same as site server are able to download the Windows updates, software center showing downloading 0%
However where the site server - Boundary and native DP is Windows updates were successfully downloaded on clients there.
MP Control Manager detected management point is not responding to HTTP requests. The HTTP status code and text is 500, Internal Server Error.
Possible cause: Management point encountered an error when connecting to SQL Server.
Solution: Verify that the SQL Server is properly configured to allow Management Point access. Verify that management point computer account or the Management Point Database Connection Account is a member of Management Point Role (smsdbrole_MP) in the SQL Server database.
Possible cause: The SQL Server Service Principal Names (SPNs) are not registered correctly in Active Directory
Solution: Ensure SQL Server SPNs are correctly registered. Review Q829868.
Possible cause: Internet Information Services (IIS) isn't configured to listen on the ports over which the site is configured to communicate.
Solution: Verify that the designated Web Site is configured to use the same ports which the site is configured to use.
Possible cause: The designated Web Site is disabled in IIS.
Solution: Verify that the designated Web Site is enabled, and functioning properly.
Possible cause: The MP ISAPI Application Identity does not have the requisite logon privileges.
Solution: Verify that the account that the MP ISAPI is configured to run under has not been denied batch logon rights through group policy.
For more information, refer to Microsoft Knowledge Base article 838891.
What I have done so far.
I have repaired MP successfully.
IIS logs shows all 4 DP's and client IP's
DISTMGR - shows all DP's
MP system role shows warning
MP Health check shows critcal
Uninstalled sccm agent on client and server
SMS_Executive was set to automatic changed to manual
MP control log - Call to HttpSendRequestSync failed for port 443 with status code 403, text: Forbidden
ccmlsapi.log - Request protocol could not be verified for '/ccm_system/request', ServerPortSecure=1
First things, do we want to isolate if this is a problem with the Management Point component or the PKI setup – set the Management Point role to run as HTTP only. Look to management point in the MPControl.log – if it is certificate related?
Basically client in Boundaries/DPS that are not same as site server are able to download the Windows updates, software center showing downloading 0%
However where the site server - Boundary and native DP is Windows updates were successfully downloaded on clients there.
MP Control Manager detected management point is not responding to HTTP requests. The HTTP status code and text is 500, Internal Server Error.
Possible cause: Management point encountered an error when connecting to SQL Server.
Solution: Verify that the SQL Server is properly configured to allow Management Point access. Verify that management point computer account or the Management Point Database Connection Account is a member of Management Point Role (smsdbrole_MP) in the SQL Server database.
Possible cause: The SQL Server Service Principal Names (SPNs) are not registered correctly in Active Directory
Solution: Ensure SQL Server SPNs are correctly registered. Review Q829868.
Possible cause: Internet Information Services (IIS) isn't configured to listen on the ports over which the site is configured to communicate.
Solution: Verify that the designated Web Site is configured to use the same ports which the site is configured to use.
Possible cause: The designated Web Site is disabled in IIS.
Solution: Verify that the designated Web Site is enabled, and functioning properly.
Possible cause: The MP ISAPI Application Identity does not have the requisite logon privileges.
Solution: Verify that the account that the MP ISAPI is configured to run under has not been denied batch logon rights through group policy.
For more information, refer to Microsoft Knowledge Base article 838891.
What I have done so far.
I have repaired MP successfully.
IIS logs shows all 4 DP's and client IP's
DISTMGR - shows all DP's
MP system role shows warning
MP Health check shows critcal
Uninstalled sccm agent on client and server
SMS_Executive was set to automatic changed to manual
MP control log - Call to HttpSendRequestSync failed for port 443 with status code 403, text: Forbidden
ccmlsapi.log - Request protocol could not be verified for '/ccm_system/request', ServerPortSecure=1
First things, do we want to isolate if this is a problem with the Management Point component or the PKI setup – set the Management Point role to run as HTTP only. Look to management point in the MPControl.log – if it is certificate related?
