Jump to content


Fed

PKI certs, switching to https & Software Center content issues

Recommended Posts

Hi All,

 

I'm currently having a few issues with my SCCM infrastructure.

 

Asa little background, I have a main site site server which runs MP, DP, Asset Intelligence, WSUS, OSD, PXE, a dedicated SQL server for Reporting and 5 DP's

I upgrade to SP1 in June 2013 and started to deploy PKI certificates in order to activate https communication only eraly in October. Everything was running fine but I rolled back from https only communication when I noticed that OSD was not working anymore.

 

A few weeks later, I noticed that newly installed or restaged machines where having an incorrect Software Center content, after a lot of log digging I found different kind of errors but basically the new clients can't retrieve completely their Machine Policy. In the end, clients show Packages and TS deployed to a collection they are members of but have a hard time with Applications, They even display Applications that are no longer available to them. Not that this doesn't impacte machines on which I'm reinstalling the client from the console

 

for now, the only workaround I have is to delete a deployment and to recreate it on this big collection (which contains all laptops and desktop from the company, +/-800 machines). Nevertheless, when I deploy a new machine, the same workaround needs to be applied.

 

My guess is that this is linked to my PKI certificates installation and that my rollback didn't work properly. Based on forum searches, I'm thinking to remove the MP role from my main server but I'm a bit affraid of doing so. I've already done similar things with Distribution Points and Reporting roles without any issues.

 

According to you, should I fear this operation?

 

If some logs details are of interest, I can post them but rather keep this post clear until needed.

 

Thanks for your help,

 

Fed

Share this post


Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Loading...


×
×
  • Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.