This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(284.8, 28.999999999999996%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EL%3C/text%3E%3C/svg%3E)
Good morning,
I just wanted to see if anyone is having issues syncing any updates for O365?
For the last couple of days, we're getting these failures on two updates:
Synchronizing update 3aec3508-50dc-4fc4-933a-4e52e2bb0124 - Microsoft 365 Apps Update - Current Channel (Preview) Quality Update for x86 based Edition Version 2211 (Build 15831.20122)
Base Url for Office update file list service not configured or not valid , keep the original Url
ProcessFileManifest() failed to process O365 file manifest. Caught exception: System.Net.WebException: The underlying connection was closed: Could not establish trust relationship for the SSL/TLS secure channel. ---> System.Security.Authentication.AuthenticationException: The remote certificate is invalid according to the validation procedure.~~ at System.Net.Security.SslState.StartSendAuthResetSignal(ProtocolToken message, AsyncProtocolRequest asyncRequest, Exception exception)~~ at
[truncated]
AsyncProtocolRequest asyncRequest, Boolean renegotiation)~~ at System.Net.Security.SslState.ProcessAuthentication(LazyAsyncResult lazyResult)~~ at System.Threading.ExecutionContext.RunInternal(ExecutionContext executionContext, ContextCallback callback, Object state, Boolean preserveSyncCtx)~~ at System.Threading.ExecutionContext.Run(ExecutionContext executionContext, ContextCallback callback, Object state, Boolean preserveSyncCtx)~~ at System.Threading.ExecutionContext.Run(ExecutionContext executionContext, ContextCallback callback, Object state)~~ at System.Net.TlsStream.ProcessAuthentication(LazyAsyncResult result)~~ at System.Net.TlsStream.Write(Byte[] buffer, Int32 offset, Int32 size)~~ at System.Net.PooledStream.Write(Byte[] buffer, Int32 offset, Int32 size)~~ at System.Net.ConnectStream.WriteHeaders(Boolean async)~~ --- End of inner exception stack trace ---~~ at System.Net.WebClient.DownloadDataInternal(Uri address, WebRequest& request)~~ at System.Net.WebClient.DownloadString(Uri address)~~ at Microsoft.SystemsManagementServer.SoftwareUpdatesManagement.WsusSyncAction.WSyncAction.ProcessFileManifest_O365Service(String sO365ServiceUrl, XmlWriter xml, String updateId)
Failed to synchronize O365 update 3aec3508-50dc-4fc4-933a-4e52e2bb0124 - Microsoft 365 Apps Update - Current Channel (Preview) Quality Update for x86 based Edition Version 2211 (Build 15831.20122)
We get the same for it's x64 sibling. The error tells me that our proxy is potentially blocking it, but it's not telling me the URL for me to verify. Is there a way to force the URL to be logged in wsyncmgr.log so I at least have a starting point to investigate?
Just wanted to add additional info. At the end of the sync process, these entries are logged:
Office sync failures because of content download summary:
Update 14dd6ddc-f550-4ac0-be76-78e58bf12baf not synced due to content download issue
Update 3aec3508-50dc-4fc4-933a-4e52e2bb0124 not synced due to content download issue
...
Sync failed: Some Office updates not synced due to content download issue. Reason: The download of the specified resource has failed.. Source: Microsoft.SystemsManagementServer.SoftwareUpdatesManagement.WsusSyncAction.WSyncAction.SyncUpdates
Sync failed because top site Office content processing failure. Sync will *not* retry further.
Declining the updates in WSUS will allow the sync to complete in the SCCM side, but this shouldn't be an ongoing solution.
I'm experiencing the same issue. The issue is only with "Microsoft 365 Apps Update - Current Channel (Preview) Quality Update for x64 based Edition Version 2211" (and x86) updates. Note that looking on the WSUS console, the sync shows that it is successful, so the issue looks to be internal to ConfigMgr and this specific channel / version of M365 and builds 15831.20122 / 15831.20100. As we do not use these, there is no negative effect besides the reporting of the sync failure in ConfigMgr, which is of course not a good thing. I suspect there is something "off" with these builds and hopefully MS will fix this soon.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(57.599999999999994, 37%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ETM%3C/text%3E%3C/svg%3E)
Office 365 preview is released on the third Tuesday of each month. I doubt we will encounter the same problem for other channels next month if MS does not solve the current problem.
Are you using a wsus service account by any chance?
I'm not sure what you you're referring to.
The WSUS service on the SUPs are running as Network Service and the "Use credentials to connect to the WSUS Server" in the WSUS Server Connection Account on each SUP is not checked.
Thanks. Synching of Office 365 updates has been buggy for as long as I know. Have you tried synching other channels?
Hi,
1,Please make sure the requirements for using Configuration Manager to manage O365 are met. The hierarchy's top-level WSUS server and the top-level Configuration Manager site server have access to the following URLs: *.microsoft.com, *.msocdn.com, *.office.com, *.office.net, *.onmicrosoft.com, officecdn.microsoft.com, and officecdn.microsoft.com.edgesuite.net. Refer to:
Requirements for using Configuration Manager to manage Office updates
2,It may be a certificate issue. On the SUP IIS server check the bindings for port 443 and verify a valid server certificate is chosen. Also click on SSL icon in IIS and choose the accept option. Similar thread for your reference:
Office 365 updates not anymore visible in SCCM console
Thanks for your time. Have a nice day!
Best regards,
Simon
If the response is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.
Hi,
Thanks for your reply. Look forward to hearing from you!
Best regards,
Simon
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(185.6, 24%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMT%3C/text%3E%3C/svg%3E)
I have similar problem.
Office 365 update it's implemented for long time and can success synch with office 365. Only for last few days i have the problem.
Checking proxy no any URLS blocked and flow are open.
IIS and certificate are good.
==> it's seem MS issue.
Looks like office.net is not being allowed through the proxy, I'm submitting a request to get that added. Lets see if that gets pushed through.
OK. Look forward to hearing good news from you.
Best regards,
Simon
@LA ,
what channel you are using on the clients "Current" or "Semi-Annual"?
I believe Semi-Annual, at least that's what's being reported by my Excel install. To be honest, I mainly work on the infrastructure side of SCCM rather than the clients, so if there's a place I can check please let me know.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(44.800000000000004, 7.000000000000001%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EST%3C/text%3E%3C/svg%3E)
Hello,
I'm having the same issue when viewing SMS_WSUS_SYNC_MANAGER in the Component Status Monitoring Thread, I'm seeing erorrs trying to download:
Failed to sync O365 update with title "Microsoft 365 Apps Update - Current Channel (Preview) Feature Update for x86 based Edition Version 2212 (Build 15928.20066)".
Failed to sync O365 update with title "Microsoft 365 Apps Update - Current Channel (Preview) Feature Update for x64 based Edition Version 2212 (Build 15928.20066)".
WSUS Synchronization failed.
Message: Some Office updates not synced due to content download issue.
Source: Microsoft.SystemsManagementServer.SoftwareUpdatesManagement.WsusSyncAction.WSyncAction.SyncUpdates.
The operating system reported error 2148270088: The download of the specified resource has failed.
This has only occurred today (9th December). All previous updates have succeded, the sync occurs on daily basis.
Has anyone resolved this?
Thanks
Shaun
The error has now disappered and updates are downloading normally again. I guess Microsoft resolved the issue.
Thanks
Shaun
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(316.8, 64%, 40%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESC%3C/text%3E%3C/svg%3E)
We use Semi-Annual but have had this same issue about 5 times in the last month. Each time I have had to manually decline the Current Channel (Preview) updates and resync, which resolves it. It seems that these come out quite regularly (more than once a month), which is a pain as we get SCOM alerts (incidents) for the WSUS sync failures each time this happens.
Update: we were missing a couple of those URL's from our proxy rules. Not sure why this issue has only recently occurred as we have had this in place for years and not until recently did this start failing.
Yep, I'm still waiting on mine to get pushed through. It takes forever to get things approved, especially if we're trying to approve the root of a domain (i.e. *.office.net in this case)