How to configure SCCM Software Update point in SSL

Jonathan LefebvreSCCM2 Comments

While the requirements of running SCCM/MEMCM in full SSL may be less required theses days with the Cloud Management Gateway being so effective with remote computers management, running the WSUS – Software Update point in SSL is likely to show up as a requirement whenever doing a security audit of your environment. In this post, we will detail the required steps, from the certificate template creation to the client validation on enabling SSL for WSUS and the SCCM Software Update Point. Requirements Any SCCM version Communication on port 8531 must be open on your Firewall Certificate template Creation The first … Read More

Setup and Configure SCCM Cloud Management Gateway (1806+)

Jonathan LefebvreSCCM37 Comments

The ConfigMgr team is working really hard to make SCCM admins job easier for some of the key components of Modern Management. Starting with SCCM 1806 release, they ease a bit the setup of the SCCM Cloud Management Gateway. The ConfigMgr team is working really hard to make SCCM admins job easier for some of the key components of Modern Management. Starting with SCCM 1806 release, they ease a bit the setup of the SCCM Cloud Management Gateway. If you are new to the concept of Cloud Management Gateway, the main advantage is that it doesn’t expose your SCCM servers to the … Read More

How to install a Certificate Registration Point in SCCM 2012

Benoit LecoursSCCM3 Comments

In this part of SCCM 2012 and SCCM 1511 blog series, we will describe how to install SCCM 2012 R2 or SCCM 1511 Certificate Registration Point (CRP). Role Description Using SCCM and Intune, the CRP communicates with a server that runs the Network Device Enrollment Service (NDES) to provision device certificate requests. This is not a mandatory Site System but we recommend to install a CRP if you need to provision client certificates to your devices (like VPN or WIFI). Prerequisites Before the CRP can be installed, dependencies outside SCCM is required. I won’t cover the prerequisite configuration in details as they are well documented … Read More

Report Builder Error – The Certificate Chain was issued by an Authority that is not Trusted

Benoit LecoursSCCM, SSRS12 Comments

When editing a SCCM 2012 report in Report Builder you receive the following error : A connection was successfully established with the server, but then an error occurred during the login process. (provider: SSL Provider, error: 0 – The certificate chain was issued by an authority that is not trusted.) Cause This error occurs because you don’t have the required SCCM SQL certificate on the computer running Report Builder. Follow the following steps in order to resolve the issue. Export the certificate from your SQL server On the SQL Server Click the Start menu, click Run, and then type mmc. Click Enter. … Read More

SCCM Distribution Point Failed to decrypt Cert PFX Data Error

Benoit LecoursSCCM2 Comments

Symptoms : Distmgr.log shows lot of “Failed to decrypt cert PFX data” errors You have shared DP enabled You have the same numbers of errors than you have shared Distribution Points SCCM Distribution Point Failed decrypt cert PFX data If you are not familiar with Share DP, here’s Microsoft definition : During migration, you can share distribution points from a source hierarchy with the destination hierarchy. You can use shared distribution points to make content that you have migrated from a source hierarchy immediately available to clients in the destination hierarchy without having to recreate that content, and then distribute … Read More