SOLVED SMS_MP_CONTROL_MANAGER for MP randomly going into Critical State

[chrisj76]

Configuration Manager 2309
CM Database SQL Server 2022

Since Migrating the CM Database to a new SQL server one of the MPs randomly going offline with the below error message.

We have to rebooting or restarting the SMS_EXECUTIVE service on the server for it to come back online.

There is NO firewall between the servers.
Our Database Administrator can see the connection to the Site Database from the MP.
Verified - MP computer account has database role memberships
- smsdbrole_MP
- smsdbrole_MPMBAM
-smsdbrole_MPUserSvc

All Certificates are valid have also re-generated a new certificate for IIS.

MP Control Manager detected management point is not responding to HTTP requests. The HTTP status code and text is 500, Internal Server Error.

Possible cause: Management point encountered an error when connecting to SQL Server.
Solution: Verify that the SQL Server is properly configured to allow Management Point access. Verify that management point computer account or the Management Point Database Connection Account is a member of Management Point Role (smsdbrole_MP) in the SQL Server database.

Possible cause: The SQL Server Service Principal Names (SPNs) are not registered correctly in Active Directory
Solution: Ensure SQL Server SPNs are correctly registered. Review Q829868.

Possible cause: Internet Information Services (IIS) isn't configured to listen on the ports over which the site is configured to communicate.
Solution: Verify that the designated Web Site is configured to use the same ports which the site is configured to use.

Possible cause: The designated Web Site is disabled in IIS.
Solution: Verify that the designated Web Site is enabled, and functioning properly.

Possible cause: The MP ISAPI Application Identity does not have the requisite logon privileges.
Solution: Verify that the account that the MP ISAPI is configured to run under has not been denied batch logon rights through group policy.

For more information, refer to Microsoft Knowledge Base article 838891.

mpcontrol logs are showing the follow errors (domain has been replaced with x)

SSL is enabled. SMS_MP_CONTROL_MANAGER 25/02/2025 4:06:18 AM 3904 (0x0F40)
Client authentication is also enabled. SMS_MP_CONTROL_MANAGER 25/02/2025 4:06:18 AM 3904 (0x0F40)
Machine name is 'EPMPQ01.x.int'. SMS_MP_CONTROL_MANAGER 25/02/2025 4:06:18 AM 3904 (0x0F40)
Begin validation of Certificate [Thumbprint e9c921662e74f7ade3e61fc08ba462b8bb036309] issued to 'EPMPQ01.x.int' SMS_MP_CONTROL_MANAGER 25/02/2025 4:06:19 AM 3904 (0x0F40)
Certificate doesn't have "SSL Client Authentication" capabilities. SMS_MP_CONTROL_MANAGER 25/02/2025 4:06:19 AM 3904 (0x0F40)
Completed validation of Certificate [Thumbprint e9c921662e74f7ade3e61fc08ba462b8bb036309] issued to 'EPMPQ01.x.int' SMS_MP_CONTROL_MANAGER 25/02/2025 4:06:19 AM 3904 (0x0F40)
Skipping this certificate which is not valid for ConfigMgr usage. SMS_MP_CONTROL_MANAGER 25/02/2025 4:06:19 AM 3904 (0x0F40)
Begin validation of Certificate [Thumbprint 9b232fecda132454a85cad478b08c7469ed0e560] issued to 'EPMPQ01.x.int' SMS_MP_CONTROL_MANAGER 25/02/2025 4:06:19 AM 3904 (0x0F40)
Certificate has "SSL Client Authentication" capability. SMS_MP_CONTROL_MANAGER 25/02/2025 4:06:19 AM 3904 (0x0F40)
Completed validation of Certificate [Thumbprint 9b232fecda132454a85cad478b08c7469ed0e560] issued to 'EPMPQ01.x.int' SMS_MP_CONTROL_MANAGER 25/02/2025 4:06:19 AM 3904 (0x0F40)
Begin validation of Certificate [Thumbprint 340200760a1f41acfd8dd888ea429826a095bda9] issued to 'EPMPQ01.x.int' SMS_MP_CONTROL_MANAGER 25/02/2025 4:06:19 AM 3904 (0x0F40)
Certificate doesn't have "SSL Client Authentication" capabilities. SMS_MP_CONTROL_MANAGER 25/02/2025 4:06:19 AM 3904 (0x0F40)
Completed validation of Certificate [Thumbprint 340200760a1f41acfd8dd888ea429826a095bda9] issued to 'EPMPQ01.x.int' SMS_MP_CONTROL_MANAGER 25/02/2025 4:06:19 AM 3904 (0x0F40)
Skipping this certificate which is not valid for ConfigMgr usage. SMS_MP_CONTROL_MANAGER 25/02/2025 4:06:19 AM 3904 (0x0F40)
>>> Selected Certificate [Thumbprint 9b232fecda132454a85cad478b08c7469ed0e560] issued to 'EPMPQ01.x.int' for HTTPS Client Authentication SMS_MP_CONTROL_MANAGER 25/02/2025 4:06:19 AM 3904 (0x0F40)
Call to HttpSendRequestSync failed for port 443 with status code 500, text: Internal Server Error SMS_MP_CONTROL_MANAGER 25/02/2025 4:06:19 AM 3904 (0x0F40)
Sent summary record of SMS Management Point on ["Display=\\EPMPQ01.x.INT\"]MSWNET:["SMS_SITE=ADL"]\\EPMPQ01.x.INT\ to D:\SMS\MP\OUTBOXES\sitestat.box\wmc98k1t.SUM, Availability 1, 314554364 KB total disk space , 118342960 KB free disk space, installation state 0. SMS_MP_CONTROL_MANAGER 25/02/2025 4:06:19 AM 3904 (0x0F40)
Http test request failed, status code is 500, 'Internal Server Error'. SMS_MP_CONTROL_MANAGER 25/02/2025 4:06:19 AM 3904 (0x0F40)
STATMSG: ID=5436 SEV=E LEV=M SOURCE="SMS Server" COMP="SMS_MP_CONTROL_MANAGER" SYS=EPMPQ01.x.INT SITE=ADL PID=4268 TID=3904 GMTDATE=Mon Feb 24 18:06:19.062 2025 ISTR0="500" ISTR1="Internal Server Error" ISTR2="" ISTR3="" ISTR4="" ISTR5="" ISTR6="" ISTR7="" ISTR8="" ISTR9="" NUMATTRS=0 LE=0X0 SMS_MP_CONTROL_MANAGER 25/02/2025 4:06:19 AM 3904 (0x0F40)
Successfully performed Management Point availability check against local computer. SMS_MP_CONTROL_MANAGER 25/02/2025 4:06:19 AM 3904 (0x0F40)

and

>>> Selected Certificate [Thumbprint 9b232fecda132454a85cad478b08c7469ed0e560] issued to 'EPMPQ01.x.int' for HTTPS Client Authentication SMS_MP_CONTROL_MANAGER 25/02/2025 4:11:19 AM 3904 (0x0F40)
Call to HttpSendRequestSync failed for port 443 with status code 500, text: Internal Server Error SMS_MP_CONTROL_MANAGER 25/02/2025 4:11:19 AM 3904 (0x0F40)
Sent summary record of SMS Management Point on ["Display=\\EPMPQ01.x.INT\"]MSWNET:["SMS_SITE=ADL"]\\EPMPQ01.x.INT\ to D:\SMS\MP\OUTBOXES\sitestat.box\5c4nqf39.SUM, Availability 1, 314554364 KB total disk space , 118342932 KB free disk space, installation state 0. SMS_MP_CONTROL_MANAGER 25/02/2025 4:11:19 AM 3904 (0x0F40)
Http test request failed, status code is 500, 'Internal Server Error'. SMS_MP_CONTROL_MANAGER 25/02/2025 4:11:19 AM 3904 (0x0F40)
Successfully performed Management Point availability check against local computer. SMS_MP_CONTROL_MANAGER 25/02/2025 4:11:19 AM 3904 (0x0F40)


any suggestions before I remove and re-install the role.

 

[Garth]

Configuration Manager 2309
CM Database SQL Server 2022

Since Migrating the CM Database to a new SQL server one of the MPs randomly going offline with the below error message.

We have to rebooting or restarting the SMS_EXECUTIVE service on the server for it to come back online.

There is NO firewall between the servers.
Our Database Administrator can see the connection to the Site Database from the MP.
Verified - MP computer account has database role memberships
- smsdbrole_MP
- smsdbrole_MPMBAM
-smsdbrole_MPUserSvc

All Certificates are valid have also re-generated a new certificate for IIS.




mpcontrol logs are showing the follow errors (domain has been replaced with x)

SSL is enabled. SMS_MP_CONTROL_MANAGER 25/02/2025 4:06:18 AM 3904 (0x0F40)
Client authentication is also enabled. SMS_MP_CONTROL_MANAGER 25/02/2025 4:06:18 AM 3904 (0x0F40)
Machine name is 'EPMPQ01.x.int'. SMS_MP_CONTROL_MANAGER 25/02/2025 4:06:18 AM 3904 (0x0F40)
Begin validation of Certificate [Thumbprint e9c921662e74f7ade3e61fc08ba462b8bb036309] issued to 'EPMPQ01.x.int' SMS_MP_CONTROL_MANAGER 25/02/2025 4:06:19 AM 3904 (0x0F40)
Certificate doesn't have "SSL Client Authentication" capabilities. SMS_MP_CONTROL_MANAGER 25/02/2025 4:06:19 AM 3904 (0x0F40)
Completed validation of Certificate [Thumbprint e9c921662e74f7ade3e61fc08ba462b8bb036309] issued to 'EPMPQ01.x.int' SMS_MP_CONTROL_MANAGER 25/02/2025 4:06:19 AM 3904 (0x0F40)
Skipping this certificate which is not valid for ConfigMgr usage. SMS_MP_CONTROL_MANAGER 25/02/2025 4:06:19 AM 3904 (0x0F40)
Begin validation of Certificate [Thumbprint 9b232fecda132454a85cad478b08c7469ed0e560] issued to 'EPMPQ01.x.int' SMS_MP_CONTROL_MANAGER 25/02/2025 4:06:19 AM 3904 (0x0F40)
Certificate has "SSL Client Authentication" capability. SMS_MP_CONTROL_MANAGER 25/02/2025 4:06:19 AM 3904 (0x0F40)
Completed validation of Certificate [Thumbprint 9b232fecda132454a85cad478b08c7469ed0e560] issued to 'EPMPQ01.x.int' SMS_MP_CONTROL_MANAGER 25/02/2025 4:06:19 AM 3904 (0x0F40)
Begin validation of Certificate [Thumbprint 340200760a1f41acfd8dd888ea429826a095bda9] issued to 'EPMPQ01.x.int' SMS_MP_CONTROL_MANAGER 25/02/2025 4:06:19 AM 3904 (0x0F40)
Certificate doesn't have "SSL Client Authentication" capabilities. SMS_MP_CONTROL_MANAGER 25/02/2025 4:06:19 AM 3904 (0x0F40)
Completed validation of Certificate [Thumbprint 340200760a1f41acfd8dd888ea429826a095bda9] issued to 'EPMPQ01.x.int' SMS_MP_CONTROL_MANAGER 25/02/2025 4:06:19 AM 3904 (0x0F40)
Skipping this certificate which is not valid for ConfigMgr usage. SMS_MP_CONTROL_MANAGER 25/02/2025 4:06:19 AM 3904 (0x0F40)
>>> Selected Certificate [Thumbprint 9b232fecda132454a85cad478b08c7469ed0e560] issued to 'EPMPQ01.x.int' for HTTPS Client Authentication SMS_MP_CONTROL_MANAGER 25/02/2025 4:06:19 AM 3904 (0x0F40)
Call to HttpSendRequestSync failed for port 443 with status code 500, text: Internal Server Error SMS_MP_CONTROL_MANAGER 25/02/2025 4:06:19 AM 3904 (0x0F40)
Sent summary record of SMS Management Point on ["Display=\\EPMPQ01.x.INT\"]MSWNET:["SMS_SITE=ADL"]\\EPMPQ01.x.INT\ to D:\SMS\MP\OUTBOXES\sitestat.box\wmc98k1t.SUM, Availability 1, 314554364 KB total disk space , 118342960 KB free disk space, installation state 0. SMS_MP_CONTROL_MANAGER 25/02/2025 4:06:19 AM 3904 (0x0F40)
Http test request failed, status code is 500, 'Internal Server Error'. SMS_MP_CONTROL_MANAGER 25/02/2025 4:06:19 AM 3904 (0x0F40)
STATMSG: ID=5436 SEV=E LEV=M SOURCE="SMS Server" COMP="SMS_MP_CONTROL_MANAGER" SYS=EPMPQ01.x.INT SITE=ADL PID=4268 TID=3904 GMTDATE=Mon Feb 24 18:06:19.062 2025 ISTR0="500" ISTR1="Internal Server Error" ISTR2="" ISTR3="" ISTR4="" ISTR5="" ISTR6="" ISTR7="" ISTR8="" ISTR9="" NUMATTRS=0 LE=0X0 SMS_MP_CONTROL_MANAGER 25/02/2025 4:06:19 AM 3904 (0x0F40)
Successfully performed Management Point availability check against local computer. SMS_MP_CONTROL_MANAGER 25/02/2025 4:06:19 AM 3904 (0x0F40)

and

>>> Selected Certificate [Thumbprint 9b232fecda132454a85cad478b08c7469ed0e560] issued to 'EPMPQ01.x.int' for HTTPS Client Authentication SMS_MP_CONTROL_MANAGER 25/02/2025 4:11:19 AM 3904 (0x0F40)
Call to HttpSendRequestSync failed for port 443 with status code 500, text: Internal Server Error SMS_MP_CONTROL_MANAGER 25/02/2025 4:11:19 AM 3904 (0x0F40)
Sent summary record of SMS Management Point on ["Display=\\EPMPQ01.x.INT\"]MSWNET:["SMS_SITE=ADL"]\\EPMPQ01.x.INT\ to D:\SMS\MP\OUTBOXES\sitestat.box\5c4nqf39.SUM, Availability 1, 314554364 KB total disk space , 118342932 KB free disk space, installation state 0. SMS_MP_CONTROL_MANAGER 25/02/2025 4:11:19 AM 3904 (0x0F40)
Http test request failed, status code is 500, 'Internal Server Error'. SMS_MP_CONTROL_MANAGER 25/02/2025 4:11:19 AM 3904 (0x0F40)
Successfully performed Management Point availability check against local computer. SMS_MP_CONTROL_MANAGER 25/02/2025 4:11:19 AM 3904 (0x0F40)


any suggestions before I remove and re-install the role.

Take a look at both the IIS logs and Event Viewer, there is likely more details there.