Unable to run the sync cycles post tenant attach, Getting Invalid certificate

Question

We are getting the below failure error post performing tenant attach16124480509993539983193806187781 - How To Manage Devices Community Forum - Welcome to the world of Device Management! This is community build by Device Management Admins for Device Management Admins❤️ Ask your questions!! We are here to help you! - Unable to run the sync cycles post tenant attach, Getting Invalid certificate

solved 0
Suresh Gopi Kolluri 3 months 2021-02-04T19:46:27+05:30 4 Answers 19 views Beginner 0

Answers ( 5 )

    0
    2021-02-10T21:13:18+05:30

    Hi Anoop,

    we were been able to find the root cause for it

    post excluding the url we still see that proxy error 407 is been coming

    when we checked the site server proxy there is a Old proxy which is been decommissioned already been used in that

    post removal everything is going smoothly

    Best answer
    0
    2021-02-05T10:51:03+05:30

    Thanks Anoop for the response
    Issue here is we are getting a invalid certificate when we are initiating the sync Cycles from Intune

    We were able to find the invalid certificate error is being occurred as there is a issue with user discovery from which is been configured in Azure services

    Currently from Azure Ad user discovery log we can see it’s trying to initiate the request but was getting failed saying ” An error occurred while sending the requested .The remote server returned an error (407) proxy authentication required

    • OK invalid cert issue is because Azure User discovery issue? and Azure user discovery is because of proxy issues in your environment

      Proxy error 407 is because the communication requires user authentication? Have you tried to white list the system itself rather than using user proxy auth?

      Some logs that are helpful in tenant attach troubleshooting is

      CMGatewayNotificationWorker.log
      AdminService.log

      1
      2021-02-06T13:20:40+05:30

      Thanks Anoop…Looks Graph.microsoft.com is not been allowed in the Sccm connection point site server..We are working on it

  1. Can you please share the details after checking the logs mentioned in the post below?

    SCCM Tenant Attach Background Process Walkthrough via Logs

    https://www.anoopcnair.com/sccm-tenant-attach-background-process-walkthrough-via-logs/

    I can’t read the error details from the screenshot

    Please can you provide more details?

Leave an answer

Sorry, you do not have a permission to answer to this question .