IanLeach

Hi Garth and thanks for your reply. The built-in report for "Count of all instances of software registered with Add/Remove programs" returns the list of discovered apps but doesn't provide me with a corresponding exe. I'm trying to source them so I can run the PowerShell script to generate Software Metering rules. I agree, SINV reports a load of chaff that you have to wade through but given that I've around 300 apps to establish rules for, I'm happy to locate each from the endless list of executables... Any other thoughts? Ian.

Hi there, I'm trying to find a way to produce an extract of all inventoried executables and then tie them back to a common application name, for example; WINWORD.EXE - Microsoft Office Word 2013 Has anyone any thoughts or queries they can share? Ian.

Thanks for your answer Garth and I figured there wasn't a statement as I can usually dig and find most things, but not that. The ConfigMgr admin is looking to block access to the DB for a third party asset management tool that seems to want to access the CM12 DB directly. He's concerned about performance and stability of the tool and wanted to find an official out that he could leverage to block it. I'll advise him to speak with his TAM.

Hi guys, Hopefully this will be a really simple question to answer. A customer has just asked me if I can provide the official statement from Microsoft that states what kind of CM12 database access and manipulation would make this an unsupported configuration. Whilst those of us long enough in the tooth know better than to pry too far into the database using anything other than the ConfigMgr console, I wondered if anyone had a link to the official steer from Microsoft? Thanks, Ian.

Sorted this - The clients were left in provisioning mode at the end of the task sequence which prevented normal operation of the client. This only occurred for clients that failed to run a controlled shutdown at the end of the task sequence.

EVERY instance is misleading. After further investigation, the clients on the CAS and PRIMARY are fully built out but not receiving AMW definitions. There are selected clients from the ones tested that are built out and don't receive AMW definition updates. The other clients exhibit the limitations highlighted in my previous post... All in all, a real mixed bag - the common theme is a lack of AMW definitions... Ian.

Hi Guys, I'm experiencing some pretty funky anomalies with System Center Endpoint Protection 2012 and wondered if anyone could point me in the right direction. We are running CM12 RTM on Windows 2008 R2 SP1. My SUP, Antimalware definition updates, Policy application, client deployment (etc) have worked autonomously and reliably for quite a while now. Over the past day or so, the propagation of updates to my clients has ceased and EVERY instance of the client has the same anomaly. When I open the 'About SCEP' element of the client that displays the engines, product versions, NIS versions and so on, instead of seeing it fully populated with that information all I see is... System Center Endpoint Protection Version: 2.2.903.0 Antimalware Client Version: 3.0.8410.0 These are clients that have worked flawlessly and also those currently being installed as a part of OSD. It's important to note that this has only occurred since the CAS and PRIMARY site servers were rebooted a day or so ago. The SUP synchronization works fine, there are no component errors and the ADR is running and downloading a package that's set to deploy and is distributed to all DPs accordingly. Does anyone have any ideas? Ian.

Cheers BinaryMime - it worked a treat! Ian.

I always like to try and tie up forum posts when I have the resolution, so here goes... There was no Software Update Point configured on the Primary Site Server and the minute I installed and configured this role, the clients received their Antimalware definitions. Thanks for your help guys, Ian.

Cheers Guys, the logic behind what you've said is sound. It's always best to throw something like this out there and see what comes back. Ian.

Hi Guys, This is a really simple question I think and wondered if anyone had a definitive answer... If a user sets their business hours as 00:00 to 00:00 for every day of the week, does this mean that the machine believes it's in use 24/7 and no software updates etc are deployed to the client? Or does it mean that effectively the user has no business hours? I just don't want anyone to have the ability to block any critical management activities. Thanks, Ian.

I'm triggering it manually using the Update button after ensuring any policy changes are applied to the client. The machines that are policy-triggered are failing similarly...

Right. I've got something further to add to this. After completing some reading about SCEP, I think my initial question regarding MMPC has been answered. It would appear that the initial client definitions are updated from whichever of the five sources it has success with, whether they are specified in the AMW policy or not. My problem is now with the error code I stated in my initial message. The WindowsUpdate.log shows numerous failures (all with error code 0x8024402c) and the WUAHandler.log doesn't vaguely reflect that shown in the troubleshooting example. This is the WUAHandler.log content... <![LOG[CWuaHandler::SetCategoriesForLeafStateReportingExclusion called with E0789628-CE08-4437-BE74-2495B842F43B]LOG]!><time="21:05:19.684+00" date="12-18-2012" component="WUAHandler" context="" type="1" thread="1320" file="cwuahandler.cpp:2452"> <![LOG[CWuaHandler::SetCategoriesForLeafStateReportingExclusion called with E0789628-CE08-4437-BE74-2495B842F43B]LOG]!><time="21:05:29.793+00" date="12-18-2012" component="WUAHandler" context="" type="1" thread="2820" file="cwuahandler.cpp:2452"> <![LOG[CWuaHandler::SetCategoriesForLeafStateReportingExclusion called with E0789628-CE08-4437-BE74-2495B842F43B]LOG]!><time="21:08:50.703+00" date="12-18-2012" component="WUAHandler" context="" type="1" thread="2184" file="cwuahandler.cpp:2452"> <![LOG[CWuaHandler::SetCategoriesForLeafStateReportingExclusion called with E0789628-CE08-4437-BE74-2495B842F43B]LOG]!><time="21:13:02.524+00" date="12-18-2012" component="WUAHandler" context="" type="1" thread="2220" file="cwuahandler.cpp:2452"> <![LOG[CWuaHandler::SetCategoriesForLeafStateReportingExclusion called with E0789628-CE08-4437-BE74-2495B842F43B]LOG]!><time="21:18:33.714+00" date="12-18-2012" component="WUAHandler" context="" type="1" thread="2960" file="cwuahandler.cpp:2452"> <![LOG[CWuaHandler::SetCategoriesForLeafStateReportingExclusion called with E0789628-CE08-4437-BE74-2495B842F43B]LOG]!><time="21:22:46.929+00" date="12-18-2012" component="WUAHandler" context="" type="1" thread="2996" file="cwuahandler.cpp:2452"> <![LOG[CWuaHandler::SetCategoriesForLeafStateReportingExclusion called with E0789628-CE08-4437-BE74-2495B842F43B]LOG]!><time="21:30:15.190+00" date="12-18-2012" component="WUAHandler" context="" type="1" thread="688" file="cwuahandler.cpp:2452"> <![LOG[CWuaHandler::SetCategoriesForLeafStateReportingExclusion called with E0789628-CE08-4437-BE74-2495B842F43B]LOG]!><time="22:14:11.522+00" date="12-18-2012" component="WUAHandler" context="" type="1" thread="2148" file="cwuahandler.cpp:2452"> The WindowsUpdate.log shows the following: 2012-12-19 15:17:41:150 996 12d0 Agent ** START ** Agent: Finding updates [CallerId = System Center 2012 Endpoint Protection (1F383481-F70E-4E7A-8B69-C4B4A23928E3)] 2012-12-19 15:17:41:150 4528 13b4 COMAPI <<-- SUBMITTED -- COMAPI: Search [ClientId = System Center 2012 Endpoint Protection (1F383481-F70E-4E7A-8B69-C4B4A23928E3)] 2012-12-19 15:17:41:150 996 12d0 Agent ********* 2012-12-19 15:17:41:150 996 12d0 Agent * Online = Yes; Ignore download priority = No 2012-12-19 15:17:41:150 996 12d0 Agent * Criteria = "(IsInstalled = 0 and IsHidden = 0 and CategoryIDs contains 'a38c835c-2950-4e87-86cc-6911a52c34a3' and CategoryIDs contains 'e0789628-ce08-4437-be74-2495b842f43b')" 2012-12-19 15:17:41:150 996 12d0 Agent * ServiceID = {7971F918-A847-4430-9279-4A52D1EFE18D} Third party service 2012-12-19 15:17:41:150 996 12d0 Agent * Search Scope = {Machine} 2012-12-19 15:17:52:199 996 12d0 Misc WARNING: Send failed with hr = 80072ee7. 2012-12-19 15:17:52:199 996 12d0 Misc WARNING: SendRequest failed with hr = 80072ee7. Proxy List used: <(null)> Bypass List used : <(null)> Auth Schemes used : <> 2012-12-19 15:17:52:199 996 12d0 Misc WARNING: WinHttp: SendRequestUsingProxy failed for <[url="http://download.windowsupdate.com/v9/windowsupdate/redir/muv4wuredir.cab>."]http://download.wind...v4wuredir.cab>.[/url] error 0x8024402c 2012-12-19 15:17:52:199 996 12d0 Misc WARNING: WinHttp: SendRequestToServerForFileInformation MakeRequest failed. error 0x8024402c 2012-12-19 15:17:52:199 996 12d0 Misc WARNING: WinHttp: SendRequestToServerForFileInformation failed with 0x8024402c 2012-12-19 15:17:52:199 996 12d0 Misc WARNING: WinHttp: ShouldFileBeDownloaded failed with 0x8024402c 2012-12-19 15:17:52:221 996 12d0 Misc WARNING: Send failed with hr = 80072ee7. 2012-12-19 15:17:52:221 996 12d0 Misc WARNING: SendRequest failed with hr = 80072ee7. Proxy List used: <(null)> Bypass List used : <(null)> Auth Schemes used : <> 2012-12-19 15:17:52:221 996 12d0 Misc WARNING: WinHttp: SendRequestUsingProxy failed for <[url="http://download.windowsupdate.com/v9/windowsupdate/redir/muv4wuredir.cab>."]http://download.wind...v4wuredir.cab>.[/url] error 0x8024402c 2012-12-19 15:17:52:221 996 12d0 Misc WARNING: WinHttp: SendRequestToServerForFileInformation MakeRequest failed. error 0x8024402c 2012-12-19 15:17:52:221 996 12d0 Misc WARNING: WinHttp: SendRequestToServerForFileInformation failed with 0x8024402c 2012-12-19 15:17:52:221 996 12d0 Misc WARNING: WinHttp: ShouldFileBeDownloaded failed with 0x8024402c 2012-12-19 15:17:52:242 996 12d0 Misc WARNING: Send failed with hr = 80072ee7. 2012-12-19 15:17:52:242 996 12d0 Misc WARNING: SendRequest failed with hr = 80072ee7. Proxy List used: <(null)> Bypass List used : <(null)> Auth Schemes used : <> 2012-12-19 15:17:52:242 996 12d0 Misc WARNING: WinHttp: SendRequestUsingProxy failed for <[url="http://download.windowsupdate.com/v9/windowsupdate/redir/muv4wuredir.cab>."]http://download.wind...v4wuredir.cab>.[/url] error 0x8024402c 2012-12-19 15:17:52:242 996 12d0 Misc WARNING: WinHttp: SendRequestToServerForFileInformation MakeRequest failed. error 0x8024402c 2012-12-19 15:17:52:242 996 12d0 Misc WARNING: WinHttp: SendRequestToServerForFileInformation failed with 0x8024402c 2012-12-19 15:17:52:242 996 12d0 Misc WARNING: WinHttp: ShouldFileBeDownloaded failed with 0x8024402c 2012-12-19 15:17:52:263 996 12d0 Misc WARNING: Send failed with hr = 80072ee7. 2012-12-19 15:17:52:263 996 12d0 Misc WARNING: SendRequest failed with hr = 80072ee7. Proxy List used: <(null)> Bypass List used : <(null)> Auth Schemes used : <> 2012-12-19 15:17:52:263 996 12d0 Misc WARNING: WinHttp: SendRequestUsingProxy failed for <[url="http://download.windowsupdate.com/v9/windowsupdate/redir/muv4wuredir.cab>."]http://download.wind...v4wuredir.cab>.[/url] error 0x8024402c 2012-12-19 15:17:52:263 996 12d0 Misc WARNING: WinHttp: SendRequestToServerForFileInformation MakeRequest failed. error 0x8024402c 2012-12-19 15:17:52:263 996 12d0 Misc WARNING: WinHttp: SendRequestToServerForFileInformation failed with 0x8024402c 2012-12-19 15:17:52:263 996 12d0 Misc WARNING: WinHttp: ShouldFileBeDownloaded failed with 0x8024402c 2012-12-19 15:17:52:263 996 12d0 Misc WARNING: DownloadFileInternal failed for [url="http://download.windowsupdate.com/v9/windowsupdate/redir/muv4wuredir.cab:"]http://download.wind...uv4wuredir.cab:[/url] error 0x8024402c 2012-12-19 15:17:52:284 996 12d0 Misc WARNING: Send failed with hr = 80072ee7. 2012-12-19 15:17:52:284 996 12d0 Misc WARNING: SendRequest failed with hr = 80072ee7. Proxy List used: <(null)> Bypass List used : <(null)> Auth Schemes used : <> 2012-12-19 15:17:52:284 996 12d0 Misc WARNING: WinHttp: SendRequestUsingProxy failed for <[url="http://download.microsoft.com/v9/windowsupdate/redir/muv4wuredir.cab>."]http://download.micr...v4wuredir.cab>.[/url] error 0x8024402c 2012-12-19 15:17:52:284 996 12d0 Misc WARNING: WinHttp: SendRequestToServerForFileInformation MakeRequest failed. error 0x8024402c 2012-12-19 15:17:52:284 996 12d0 Misc WARNING: WinHttp: SendRequestToServerForFileInformation failed with 0x8024402c 2012-12-19 15:17:52:284 996 12d0 Misc WARNING: WinHttp: ShouldFileBeDownloaded failed with 0x8024402c 2012-12-19 15:17:52:305 996 12d0 Misc WARNING: Send failed with hr = 80072ee7. 2012-12-19 15:17:52:305 996 12d0 Misc WARNING: SendRequest failed with hr = 80072ee7. Proxy List used: <(null)> Bypass List used : <(null)> Auth Schemes used : <> 2012-12-19 15:17:52:305 996 12d0 Misc WARNING: WinHttp: SendRequestUsingProxy failed for <[url="http://download.microsoft.com/v9/windowsupdate/redir/muv4wuredir.cab>."]http://download.micr...v4wuredir.cab>.[/url] error 0x8024402c 2012-12-19 15:17:52:305 996 12d0 Misc WARNING: WinHttp: SendRequestToServerForFileInformation MakeRequest failed. error 0x8024402c 2012-12-19 15:17:52:305 996 12d0 Misc WARNING: WinHttp: SendRequestToServerForFileInformation failed with 0x8024402c 2012-12-19 15:17:52:305 996 12d0 Misc WARNING: WinHttp: ShouldFileBeDownloaded failed with 0x8024402c 2012-12-19 15:17:52:325 996 12d0 Misc WARNING: Send failed with hr = 80072ee7. 2012-12-19 15:17:52:325 996 12d0 Misc WARNING: SendRequest failed with hr = 80072ee7. Proxy List used: <(null)> Bypass List used : <(null)> Auth Schemes used : <> 2012-12-19 15:17:52:325 996 12d0 Misc WARNING: WinHttp: SendRequestUsingProxy failed for <[url="http://download.microsoft.com/v9/windowsupdate/redir/muv4wuredir.cab>."]http://download.micr...v4wuredir.cab>.[/url] error 0x8024402c 2012-12-19 15:17:52:325 996 12d0 Misc WARNING: WinHttp: SendRequestToServerForFileInformation MakeRequest failed. error 0x8024402c 2012-12-19 15:17:52:325 996 12d0 Misc WARNING: WinHttp: SendRequestToServerForFileInformation failed with 0x8024402c 2012-12-19 15:17:52:325 996 12d0 Misc WARNING: WinHttp: ShouldFileBeDownloaded failed with 0x8024402c 2012-12-19 15:17:52:347 996 12d0 Misc WARNING: Send failed with hr = 80072ee7. 2012-12-19 15:17:52:347 996 12d0 Misc WARNING: SendRequest failed with hr = 80072ee7. Proxy List used: <(null)> Bypass List used : <(null)> Auth Schemes used : <> 2012-12-19 15:17:52:347 996 12d0 Misc WARNING: WinHttp: SendRequestUsingProxy failed for <[url="http://download.microsoft.com/v9/windowsupdate/redir/muv4wuredir.cab>."]http://download.micr...v4wuredir.cab>.[/url] error 0x8024402c 2012-12-19 15:17:52:347 996 12d0 Misc WARNING: WinHttp: SendRequestToServerForFileInformation MakeRequest failed. error 0x8024402c 2012-12-19 15:17:52:347 996 12d0 Misc WARNING: WinHttp: SendRequestToServerForFileInformation failed with 0x8024402c 2012-12-19 15:17:52:347 996 12d0 Misc WARNING: WinHttp: ShouldFileBeDownloaded failed with 0x8024402c 2012-12-19 15:17:52:347 996 12d0 Misc WARNING: DownloadFileInternal failed for [url="http://download.microsoft.com/v9/windowsupdate/redir/muv4wuredir.cab:"]http://download.micr...uv4wuredir.cab:[/url] error 0x8024402c 2012-12-19 15:17:52:368 996 12d0 Misc WARNING: Send failed with hr = 80072ee7. 2012-12-19 15:17:52:368 996 12d0 Misc WARNING: SendRequest failed with hr = 80072ee7. Proxy List used: <(null)> Bypass List used : <(null)> Auth Schemes used : <> 2012-12-19 15:17:52:368 996 12d0 Misc WARNING: WinHttp: SendRequestUsingProxy failed for <[url="http://www.update.microsoft.com/v9/windowsupdate/redir/muv4wuredir.cab>."]http://www.update.mi...v4wuredir.cab>.[/url] error 0x8024402c 2012-12-19 15:17:52:368 996 12d0 Misc WARNING: WinHttp: SendRequestToServerForFileInformation MakeRequest failed. error 0x8024402c 2012-12-19 15:17:52:368 996 12d0 Misc WARNING: WinHttp: SendRequestToServerForFileInformation failed with 0x8024402c 2012-12-19 15:17:52:368 996 12d0 Misc WARNING: WinHttp: ShouldFileBeDownloaded failed with 0x8024402c 2012-12-19 15:17:52:389 996 12d0 Misc WARNING: Send failed with hr = 80072ee7. 2012-12-19 15:17:52:389 996 12d0 Misc WARNING: SendRequest failed with hr = 80072ee7. Proxy List used: <(null)> Bypass List used : <(null)> Auth Schemes used : <> 2012-12-19 15:17:52:389 996 12d0 Misc WARNING: WinHttp: SendRequestUsingProxy failed for <[url="http://www.update.microsoft.com/v9/windowsupdate/redir/muv4wuredir.cab>."]http://www.update.mi...v4wuredir.cab>.[/url] error 0x8024402c 2012-12-19 15:17:52:389 996 12d0 Misc WARNING: WinHttp: SendRequestToServerForFileInformation MakeRequest failed. error 0x8024402c 2012-12-19 15:17:52:389 996 12d0 Misc WARNING: WinHttp: SendRequestToServerForFileInformation failed with 0x8024402c 2012-12-19 15:17:52:389 996 12d0 Misc WARNING: WinHttp: ShouldFileBeDownloaded failed with 0x8024402c 2012-12-19 15:17:52:411 996 12d0 Misc WARNING: Send failed with hr = 80072ee7. 2012-12-19 15:17:52:411 996 12d0 Misc WARNING: SendRequest failed with hr = 80072ee7. Proxy List used: <(null)> Bypass List used : <(null)> Auth Schemes used : <> 2012-12-19 15:17:52:411 996 12d0 Misc WARNING: WinHttp: SendRequestUsingProxy failed for <[url="http://www.update.microsoft.com/v9/windowsupdate/redir/muv4wuredir.cab>."]http://www.update.mi...v4wuredir.cab>.[/url] error 0x8024402c 2012-12-19 15:17:52:411 996 12d0 Misc WARNING: WinHttp: SendRequestToServerForFileInformation MakeRequest failed. error 0x8024402c 2012-12-19 15:17:52:411 996 12d0 Misc WARNING: WinHttp: SendRequestToServerForFileInformation failed with 0x8024402c 2012-12-19 15:17:52:411 996 12d0 Misc WARNING: WinHttp: ShouldFileBeDownloaded failed with 0x8024402c 2012-12-19 15:17:52:432 996 12d0 Misc WARNING: Send failed with hr = 80072ee7. 2012-12-19 15:17:52:432 996 12d0 Misc WARNING: SendRequest failed with hr = 80072ee7. Proxy List used: <(null)> Bypass List used : <(null)> Auth Schemes used : <> 2012-12-19 15:17:52:432 996 12d0 Misc WARNING: WinHttp: SendRequestUsingProxy failed for <[url="http://www.update.microsoft.com/v9/windowsupdate/redir/muv4wuredir.cab>."]http://www.update.mi...v4wuredir.cab>.[/url] error 0x8024402c 2012-12-19 15:17:52:432 996 12d0 Misc WARNING: WinHttp: SendRequestToServerForFileInformation MakeRequest failed. error 0x8024402c 2012-12-19 15:17:52:432 996 12d0 Misc WARNING: WinHttp: SendRequestToServerForFileInformation failed with 0x8024402c 2012-12-19 15:17:52:432 996 12d0 Misc WARNING: WinHttp: ShouldFileBeDownloaded failed with 0x8024402c 2012-12-19 15:17:52:432 996 12d0 Misc WARNING: DownloadFileInternal failed for [url="http://www.update.microsoft.com/v9/windowsupdate/redir/muv4wuredir.cab:"]http://www.update.mi...uv4wuredir.cab:[/url] error 0x8024402c 2012-12-19 15:17:52:432 996 12d0 Agent WARNING: Failed to obtain the authorization cab URLs, hr=0x8024402c 2012-12-19 15:17:52:432 996 12d0 Agent * WARNING: Online service registration/service ID resolution failed, hr=0x8024402C 2012-12-19 15:17:52:433 996 12d0 Agent * WARNING: Exit code = 0x8024402C 2012-12-19 15:17:52:433 996 12d0 Agent ********* 2012-12-19 15:17:52:433 996 12d0 Agent ** END ** Agent: Finding updates [CallerId = System Center 2012 Endpoint Protection (1F383481-F70E-4E7A-8B69-C4B4A23928E3)] 2012-12-19 15:17:52:433 996 12d0 Agent ************* 2012-12-19 15:17:52:433 996 12d0 Agent WARNING: WU client failed Searching for update with error 0x8024402c 2012-12-19 15:17:52:434 4528 13c4 COMAPI >>-- RESUMED -- COMAPI: Search [ClientId = System Center 2012 Endpoint Protection (1F383481-F70E-4E7A-8B69-C4B4A23928E3)] 2012-12-19 15:17:52:435 4528 13c4 COMAPI - Updates found = 0 2012-12-19 15:17:52:435 4528 13c4 COMAPI - WARNING: Exit code = 0x00000000, Result code = 0x8024402C 2012-12-19 15:17:52:435 4528 13c4 COMAPI --------- 2012-12-19 15:17:52:435 4528 13c4 COMAPI -- END -- COMAPI: Search [ClientId = System Center 2012 Endpoint Protection (1F383481-F70E-4E7A-8B69-C4B4A23928E3)] 2012-12-19 15:17:52:435 4528 13c4 COMAPI ------------- 2012-12-19 15:17:52:435 4528 10bc COMAPI WARNING: Operation failed due to earlier error, hr=8024402C 2012-12-19 15:17:52:435 4528 10bc COMAPI FATAL: Unable to complete asynchronous search. (hr=8024402C) 2012-12-19 15:18:32:789 996 a6c AU AU received policy change subscription event 2012-12-19 15:38:39:430 996 e0c Misc WARNING: Send failed with hr = 80072ee7. 2012-12-19 15:38:39:430 996 e0c Misc WARNING: SendRequest failed with hr = 80072ee7. Proxy List used: <(null)> Bypass List used : <(null)> Auth Schemes used : <> 2012-12-19 15:38:39:430 996 e0c PT + Last proxy send request failed with hr = 0x80072EE7, HTTP status code = 0 2012-12-19 15:38:39:430 996 e0c PT + Caller provided credentials = No 2012-12-19 15:38:39:430 996 e0c PT + Impersonate flags = 0 2012-12-19 15:38:39:430 996 e0c PT + Possible authorization schemes used = 2012-12-19 15:38:39:430 996 e0c PT WARNING: GetConfig failure, error = 0x8024402C, soap client error = 5, soap error code = 0, HTTP status code = 200 2012-12-19 15:38:39:430 996 e0c PT WARNING: PTError: 0x8024402c 2012-12-19 15:38:39:430 996 e0c PT WARNING: GetConfig_WithRecovery failed: 0x8024402c 2012-12-19 15:38:39:430 996 e0c PT WARNING: RefreshConfig failed: 0x8024402c 2012-12-19 15:38:39:430 996 e0c PT WARNING: RefreshPTState failed: 0x8024402c 2012-12-19 15:38:39:430 996 e0c PT WARNING: PTError: 0x8024402c 2012-12-19 15:38:39:430 996 e0c Report WARNING: Reporter failed to upload events with hr = 8024402c. 2012-12-19 15:42:04:407 996 a6c AU AU received policy change subscription event I believe the first set of failures represent the failure to connect to Microsoft Update. I've changed the policy to remove MU as a source and have instead added MMPC as we've obviously a route to this we can use as a fallback. The main issue remains with SCCM as the update source and I believe this is reflected in the last entries. My only parting thought is that I need to get a proxy exception created for the SUP/EPP server to enable clients to reach it. Any help you can provide would be fantastic. Ian.

Cheers Niall. I'll run through the troubleshooting and post an update here ASAP.

OK, a little bit of further testing has revealed the following: Clients with a valid proxy server update their definitions when the proxy configuration is enabled. When the proxy is disabled, the client fails to update. To me, this points at MMPC being credible as the update source but doesn't explain why the SUP isn't servicing requests from the SCEP clients... Ian.