TeachMeSCCM Posted September 29, 2021 Report post Posted September 29, 2021 (edited) Update still waiting on MS did a another reinstall watched the logs ensured all permission are correct I have both of Sites setup this way So question. Can I go to the \Administration\Overview\Security\Certificates And Just import this SMS into the Certificate folders I know this should be done automatically? I want to make sure the thumbprint matches my SMS in the SMS folder or the one in personal. Can someone confirm with me if I can do this and the correct ones to match up? I also made sure i didn't have anything being blocked in my \Administration\Overview\Security\Certificates still getting the same errors from clients not registering My clients just do this They never register just sleep and retry forever; done clean install; deleted machine keys ect; different strings restart SMS ect same issue. Edited September 29, 2021 by TeachMeSCCM Quote Share this post Link to post Share on other sites More sharing options...
TeachMeSCCM Posted October 4, 2021 Report post Posted October 4, 2021 (edited) The best solution I can give someone with this error is make sure your IIS is setup correct I had noticed that the SMS_MP directory browser everything bit Long Date should be checked make sure it's applied Make sure you have the proper security options for the SMS_MP properties IUSR SYSTEM LOCAL Network Your Site System I then reinstalled the MP let the certs re create themselves I had to reboot my server see the certs to 443 like I did above I'm getting self singed certs now on most few machines still giving me issue but most are getting them. Edited October 4, 2021 by TeachMeSCCM Quote Share this post Link to post Share on other sites More sharing options...
TeachMeSCCM Posted October 11, 2021 Report post Posted October 11, 2021 The machines that were giving me issue I just did the delete on SMSCFG.INI and then restarted the SMS to get a new cert to register correctly I'm back to way above my #'s Sorry for the long thread but I got it fixed in end. Quote Share this post Link to post Share on other sites More sharing options...
anyweb Posted October 11, 2021 Report post Posted October 11, 2021 I'm glad you got it sorted 1 Quote Share this post Link to post Share on other sites More sharing options...
WinDoozer Posted 14 hours ago Report post Posted 14 hours ago On 10/4/2021 at 9:24 AM, TeachMeSCCM said: The best solution I can give someone with this error is make sure your IIS is setup correct I had noticed that the SMS_MP directory browser everything bit Long Date should be checked make sure it's applied Make sure you have the proper security options for the SMS_MP properties IUSR SYSTEM LOCAL Network Your Site System I then reinstalled the MP let the certs re create themselves I had to reboot my server see the certs to 443 like I did above I'm getting self singed certs now on most few machines still giving me issue but most are getting them. Hi there, I know this is an old post but i was wondering if you could clarify a bit. Did you end up reinstalling the MP on the primary site? I am experiencing the same thing right now and I am unable to pinpoint the issue. Ive pretty much gone down the same log dive as you did and I am receiving the a lot of the same errors. The properties on SMS_MP seem to be correct on our MP. We have a pretty flat hierarchy, 1 primary site and 5 DPs. Quote Share this post Link to post Share on other sites More sharing options...
