Co-management client could not connect .
Question
I have raising this issues, still facing same issue.
I have set internal MP as well but having same issues. and nothing error in logs attached all logs files of screenshot.
Configuration Manager agent state
Could not connect
Details
The Configuration Manager client is currently unable to reach the Configuration Manager management point. Make sure the client can communicate with the server. For more information on client communication issues, see the CcmMessaging.log, LocationServices.log, or ClientLocation.log files on the Configuration Manager client.
Last Configuration Manager agent check in time
2/1/1900, 12:00:00 AM
Intune managed workloads
Compliance Policy; Windows Update for Business
Answers ( 6 )
I think it’s worth comparing workling (non-VPN) and non-working (VPN) boundary configurations. Maybe you might some clues why the VPN boundaries are NOT working.
Is the client able to find and authenticate internal HTTP MP? SCCMServer.abc.local ?
Are you sure preferred MP details are configured as per the above-mentioned article?
Hi Anoop,
Yes, see below logs for the same.
The MP name retrieved is ‘SCCMServer.ABC.local’ with version ‘8853’ and capabilities ”
Yes, i have set MP in hierarchy configuration.
I have noticed thats happening only those clients which are connecting through VPN, and i have also set MP for vpn boundary group. Clients does not have issue which are connecting to internal network. pls suggest
Also find client location.log
Current AD forest name is abc.local, domain name is abc.local ClientLocation 2020/08/01 11:40:55 22196 (0x56B4)
Domain joined client is in Intranet ClientLocation 2020/08/01 11:40:55 22196 (0x56B4)
Rotating assigned management point, new management point [1] is: SCCMServer.abc.local (8853) with capabilities: ClientLocation 2020/08/01 11:41:08 22196 (0x56B4)
Assigned MP changed from to . ClientLocation 2020/08/01 11:41:08 22196 (0x56B4)
Hi Anoop,
pls find locatonservice.log.
Domain joined client is in Unknown location LocationServices 2020/08/01 11:39:06 4736 (0x1280)
Unable to retrieve AD site membership LocationServices 2020/08/01 11:40:55 22196 (0x56B4)
Attempting to retrieve lookup MP(s) from AD LocationServices 2020/08/01 11:40:55 22196 (0x56B4)
The MP name retrieved is ‘SCCMServer.ABC.local’ with version ‘8853’ and capabilities ” LocationServices 2020/08/01 11:41:08 22196 (0x56B4)
MP ‘SCCMServer.ABC.local’ is compatible LocationServices 2020/08/01 11:41:08 22196 (0x56B4)
Lookup Management Points from AD: LocationServices 2020/08/01 11:41:08 22196 (0x56B4)
Name: ‘SCCMServer.ABC.local’ HTTPS: ‘N’ ForestTrust: ‘N’ LocationServices 2020/08/01 11:41:08 22196 (0x56B4)
Retrieved lookup MP(s) from AD LocationServices 2020/08/01 11:41:08 22196 (0x56B4)
Default Management Points from AD: LocationServices 2020/08/01 11:41:08 22196 (0x56B4)
Name: ‘SCCMServer.ABC.local’ HTTPS: ‘N’ ForestTrust: ‘N’ LocationServices 2020/08/01 11:41:08 22196 (0x56B4)
Persisting the default management points in WMI LocationServices 2020/08/01 11:41:08 22196 (0x56B4)
Unable to retrieve AD site membership LocationServices 2020/08/01 11:41:08 22196 (0x56B4)
Reset assigned MP error count LocationServices 2020/08/01 11:41:10 18604 (0x48AC)
LSUpdateInternetManagementPoints LocationServices 2020/08/01 11:41:10 22196 (0x56B4)
Unable to retrieve AD site membership LocationServices 2020/08/01 11:41:10 22196 (0x56B4)
LSUpdateInternetManagementPoints: No internet MPs were retrieved from MP SCCMServer.ABC.local, clearing previous list. LocationServices 2020/08/01 11:41:11 22196 (0x56B4)
Default Management Points from MP: LocationServices 2020/08/01 11:41:11 22196 (0x56B4)
Name: ‘SCCMServer.ABC.local’ HTTPS: ‘N’ ForestTrust: ‘Y’, Locality: ‘3’, MPBGRFallbackType: ‘None’, MPFallbackTime: ‘0’ LocationServices 2020/08/01 11:41:11 22196 (0x56B4)
Persisted Default Management Point Locations locally LocationServices 2020/08/01 11:41:11 22196 (0x56B4)
Unable to retrieve AD site membership LocationServices 2020/08/01 11:41:11 22196 (0x56B4)
Attempting to retrieve local MPs from the assigned MP LocationServices 2020/08/01 11:41:11 22196 (0x56B4)
Unable to retrieve AD site membership LocationServices 2020/08/01 11:41:12 22196 (0x56B4)
Unable to retrieve AD site membership LocationServices 2020/08/01 11:41:12 22196 (0x56B4)
MPLIST requests are throttled for 00:00:58 LocationServices 2020/08/01 11:41:12 18604 (0x48AC)
Unable to retrieve AD site membership LocationServices 2020/08/01 11:41:12 22196 (0x56B4)
Unable to retrieve AD site membership LocationServices 2020/08/01 11:41:17 18604 (0x48AC)
Received reply of type PortalCertificateReply LocationServices 2020/08/01 11:41:19 23524 (0x5BE4)
The reply from location manager contains 0 certificates LocationServices 2020/08/01 11:41:19 23524 (0x5BE4)
Updating portal certificates LocationServices 2020/08/01 11:41:19 23524 (0x5BE4)
There are no certificates available to install LocationServices 2020/08/01 11:41:19 23524 (0x5BE4)
Received reply of type PortalCertificateReply LocationServices 2020/08/01 11:41:22 22196 (0x56B4)
The reply from location manager contains 0 certificates LocationServices 2020/08/01 11:41:22 22196 (0x56B4)
Updating portal certificates LocationServices 2020/08/01 11:41:22 22196 (0x56B4)
There are no certificates available to install LocationServices 2020/08/01 11:41:22 22196 (0x56B4)
Received reply of type PortalCertificateReply LocationServices 2020/08/01 11:41:24 22672 (0x5890)
The reply from location manager contains 0 certificates LocationServices 2020/08/01 11:41:24 22672 (0x5890)
Updating portal certificates LocationServices 2020/08/01 11:41:24 22672 (0x5890)
There are no certificates available to install LocationServices 2020/08/01 11:41:24 22672 (0x5890)
Received reply of type PortalCertificateReply LocationServices 2020/08/01 11:41:26 22672 (0x5890)
The reply from location manager contains 0 certificates LocationServices 2020/08/01 11:41:26 22672 (0x5890)
Updating portal certificates LocationServices 2020/08/01 11:41:26 22672 (0x5890)
There are no certificates available to install LocationServices 2020/08/01 11:41:26 22672 (0x5890)
Received reply of type PortalCertificateReply LocationServices 2020/08/01 11:41:27 18604 (0x48AC)
The reply from location manager contains 0 certificates LocationServices 2020/08/01 11:41:27 18604 (0x48AC)
Updating portal certificates LocationServices 2020/08/01 11:41:27 18604 (0x48AC)
There are no certificates available to install LocationServices 2020/08/01 11:41:27 18604 (0x48AC)
Received reply of type PortalCertificateReply LocationServices 2020/08/01 11:41:28 22196 (0x56B4)
The reply from location manager contains 0 certificates LocationServices 2020/08/01 11:41:28 22196 (0x56B4)
Updating portal certificates LocationServices 2020/08/01 11:41:28 22196 (0x56B4)
There are no certificates available to install LocationServices 2020/08/01 11:41:28 22196 (0x56B4)
Unable to retrieve AD site membership LocationServices 2020/08/01 11:41:59 22196 (0x56B4)
Unable to retrieve AD site membership LocationServices 2020/08/01 11:42:26 18028 (0x466C)
Created and Sent Location Request ‘{F3A62C41-5D5D-4910-86A1-432D528EFDC5}’ for package {4700280E-B8E3-43BB-9D86-1DBB23A1EF3F} LocationServices 2020/08/01 11:42:26 18028 (0x466C)
Calling back with the following WSUS locations LocationServices 2020/08/01 11:42:26 14880 (0x3A20)
WSUS Path=’http://SCCMServer.ABC.local:8530′, Server=’SCCMServer.ABC.local’, Version=’71’, LocalityEx=’BOUNDARYGROUP’, SUPFallbackIn=’0′ LocationServices 2020/08/01 11:42:26 14880 (0x3A20)
Calling back with locations for WSUS request {F3A62C41-5D5D-4910-86A1-432D528EFDC5} LocationServices 2020/08/01 11:42:27 14880 (0x3A20)
Unable to retrieve AD site membership LocationServices 2020/08/01 11:43:01 18604 (0x48AC)
Unable to retrieve AD site membership LocationServices 2020/08/01 11:44:06 22196 (0x56B4)
Unable to retrieve AD site membership LocationServices 2020/08/01 11:46:18 22196 (0x56B4)
I can’t read the logs …
Can you try to paste the log entries (NOT all) but the relevant errors and snippets that would really helpful ….
Also…as I mentioned in the another thread ..please can you go through the following steps
Locationservices.log should have the MP details which it’s getting connected to.
Have you analysed locationservices.log to understand whether the client is contacting http mp ? Have you checked
Vimal’s post about the communication flow
https://www.anoopcnair.com/configmgr-client-deployment-using-intune-workflow-sccm-cmg/
This is very important to understand … you are expecting clients to contact internal MP .. instead of CMG ?
Have you configured preferred mp? https://www.anoopcnair.com/sccm-preferred-management-points-selection/