I have SCCM CB and also use SCEP. Some of my clients aren't updating the SCEP definitions. What log do I look in to troubleshoot? I don't see anything in the EndpointPotectionAgent.log file.

Hi all, anybody know what I try to resolve this issue with some of my cleints? ITs not a network/VLAN issue as there are other clients in the same IP range working fine. snippet of my location service logs below: <![LOG[The reply from location manager contains 0 certificates]LOG]!><time="10:01:50.318-120" date="11-09-2018" component="LocationServices" context="" type="1" thread="1656" file="lsportalutils.cpp:96">
<![LOG[Updating portal certificates]LOG]!><time="10:01:50.318-120" date="11-09-2018" component="LocationServices" context="" type="1" thread="1656" file="lssecurity.cpp:4145">
<![LOG[There are no certificates available to install]LOG]!><time="10:01:50.318-120" date="11-09-2018" component="LocationServices" context="" type="1" thread="1656" file="lssecurity.cpp:4230">
<![LOG[Executing Task LSRefreshLocationsTask]LOG]!><time="10:14:49.815-120" date="11-09-2018" component="LocationServices" context="" type="1" thread="104" file="scheduledcleanupendpoint.cpp:173">
<![LOG[Unable to retrieve AD site membership]LOG]!><time="10:14:49.940-120" date="11-09-2018" component="LocationServices" context="" type="1" thread="104" file="lsad.cpp:842">
<![LOG[Unable to retrieve AD site membership]LOG]!><time="10:14:49.956-120" date="11-09-2018" component="LocationServices" context="" type="1" thread="104" file="lsad.cpp:842">
<![LOG[Unable to retrieve AD site membership]LOG]!><time="10:14:49.987-120" date="11-09-2018" component="LocationServices" context="" type="1" thread="104" file="lsad.cpp:842">
<![LOG[Unable to retrieve AD site membership]LOG]!><time="10:14:49.987-120" date="11-09-2018" component="LocationServices" context="" type="1" thread="104" file="lsad.cpp:842">
<![LOG[Unable to retrieve AD site membership]LOG]!><time="10:14:50.003-120" date="11-09-2018" component="LocationServices" context="" type="1" thread="104" file="lsad.cpp:842">
<![LOG[Unable to retrieve AD site membership]LOG]!><time="10:14:50.003-120" date="11-09-2018" component="LocationServices" context="" type="1" thread="104" file="lsad.cpp:842">
<![LOG[Unable to retrieve AD site membership]LOG]!><time="10:14:50.034-120" date="11-09-2018" component="LocationServices" context="" type="1" thread="104" file="lsad.cpp:842">
<![LOG[Unable to retrieve AD site membership]LOG]!><time="10:14:50.034-120" date="11-09-2018" component="LocationServices" context="" type="1" thread="104" file="lsad.cpp:842">
<![LOG[Unable to retrieve AD site membership]LOG]!><time="10:14:50.065-120" date="11-09-2018" component="LocationServices" context="" type="1" thread="104" file="lsad.cpp:842">
<![LOG[Unable to retrieve AD site membership]LOG]!><time="10:14:50.081-120" date="11-09-2018" component="LocationServices" context="" type="1" thread="104" file="lsad.cpp:842">
<![LOG[Unable to retrieve AD site membership]LOG]!><time="10:14:50.096-120" date="11-09-2018" component="LocationServices" context="" type="1" thread="104" file="lsad.cpp:842">
<![LOG[Unable to retrieve AD site membership]LOG]!><time="10:14:50.128-120" date="11-09-2018" component="LocationServices" context="" type="1" thread="104" file="lsad.cpp:842">
<![LOG[Unable to retrieve AD site membership]LOG]!><time="10:14:50.143-120" date="11-09-2018" component="LocationServices" context="" type="1" thread="104" file="lsad.cpp:842">
<![LOG[Unable to retrieve AD site membership]LOG]!><time="10:14:50.174-120" date="11-09-2018" component="LocationServices" context="" type="1" thread="104" file="lsad.cpp:842">
<![LOG[Unable to retrieve AD site membership]LOG]!><time="10:14:50.190-120" date="11-09-2018" component="LocationServices" context="" type="1" thread="104" file="lsad.cpp:842">
<![LOG[Unable to retrieve AD site membership]LOG]!><time="10:14:50.206-120" date="11-09-2018" component="LocationServices" context="" type="1" thread="104" file="lsad.cpp:842">
<![LOG[Unable to retrieve AD site membership]LOG]!><time="10:55:33.256-120" date="11-09-2018" component="LocationServices" context="" type="1" thread="1136" file="lsad.cpp:842">
<![LOG[Unable to retrieve AD site membership]LOG]!><time="10:55:33.365-120" date="11-09-2018" component="LocationServices" context="" type="1" thread="1136" file="lsad.cpp:842">
<![LOG[Received reply of type PortalCertificateReply]LOG]!><time="10:55:33.928-120" date="11-09-2018" component="LocationServices" context="" type="1" thread="1676" file="replylocationsendpoint.cpp:278">
<![LOG[The reply from location manager contains 0 certificates]LOG]!><time="10:55:33.928-120" date="11-09-2018" component="LocationServices" context="" type="1" thread="1676" file="lsportalutils.cpp:96">
<![LOG[Updating portal certificates]LOG]!><time="10:55:33.928-120" date="11-09-2018" component="LocationServices" context="" type="1" thread="1676" file="lssecurity.cpp:4145">
<![LOG[There are no certificates available to install]LOG]!><time="10:55:33.943-120" date="11-09-2018" component="LocationServices" context="" type="1" thread="1676" file="lssecurity.cpp:4230">
<![LOG[Unable to retrieve AD site membership]LOG]!><time="11:01:48.707-120" date="11-09-2018" component="LocationServices" context="" type="1" thread="3460" file="lsad.cpp:842">
<![LOG[Unable to retrieve AD site membership]LOG]!><time="11:01:48.739-120" date="11-09-2018" component="LocationServices" context="" type="1" thread="3460" file="lsad.cpp:842">
<![LOG[Received reply of type PortalCertificateReply]LOG]!><time="11:01:48.926-120" date="11-09-2018" component="LocationServices" context="" type="1" thread="3144" file="replylocationsendpoint.cpp:278">
<![LOG[The reply from location manager contains 0 certificates]LOG]!><time="11:01:48.926-120" date="11-09-2018" component="LocationServices" context="" type="1" thread="3144" file="lsportalutils.cpp:96">
<![LOG[Updating portal certificates]LOG]!><time="11:01:48.926-120" date="11-09-2018" component="LocationServices" context="" type="1" thread="3144" file="lssecurity.cpp:4145">
<![LOG[There are no certificates available to install]LOG]!><time="11:01:48.942-120" date="11-09-2018" component="LocationServices" context="" type="1" thread="3144" file="lssecurity.cpp:4230">
 

Hello, I have an issue with an application package during a task sequence. I can deploy correctly this package without any problem, but i can't deploy it during a task sequence: In the smstslog i have this: "Failed to run the action: No more data is available. (Error: 80070103; Source: Windows i have this issue only whith dwg true view 2019,. If anyone can help me? Thank you.  

Hello, I have enabled the feature in SCCM for "Windows Defender Application Control". For some reason I cannot get the policy to push to any machines. Any ideas on what the issue may be would be appreciated. -Judical

I'm currently troubleshooting the logs, but because my SCCM Primary is installed on Server 2016 and SCEP doesn't install.  How do we get this to work? Here's the messages I'm getting from looking at Site Components in the Console:
Site Component Manager failed to install component SMS_ENDPOINT_PROTECTION_CONTROL_MANAGER on server & SCEPInstall.exe returns error 0x8004ff73.

I am running SCCM on my 2016 windows server, and receive these errors in my windowsupdate.log file.  I have a WSUS service running on the SCCM server, and a GPO is defined to point to that.

I am struggling as to why I am still getting this error.  I am deploying Software Center to my AD server.  Both servers run 2016.  I followed this tutorial: https://www.windows-noob.com/forums/topic/4428-using-sccm-2012-in-a-lab-part-3-configuring-discovery-and-boundaries/.  I did notice that under software library/packages, that the cm client package failed to distribute, so not sure if that's part of this, or that's a separate problem.  I've done some research, and people have said that you failed to define the DP.   Boundary Properties: Boundary Group Properties:

Hi Everyone, We have an SCCM CB IBCM server within our DMZ serving up updates for our internet based laptop users.  Today we ran an external vulnerability scan to health check the security of our network.  The report flagged up a red mark against our IBCM server due to not using third party certificates.  "Due to using an internally generated certificate the server is unable to verify it"  or words to that effect. I'm sure I'm correct in saying that each an every client much have a unique certificate for SCCM to work, and using a third party cert would be incredibly expensive if we had to purchase 100s of them for each client. Can someone please confirm the correct usage of certificates in an IBCM scenario please.  Should we be using third party certs, or carry on using the current internal ones.  Thanks!