Hello,
Adding another log information: ExternalEventAgent.log
CExternalEventEndpoint::HandleMessage. ExternalEventAgent 3/6/2023 8:38:00 PM 5292 (0x14AC) Start to execute action for hint MDM_WindowsAdvancedThreatProtection_HealthState01 ExternalEventAgent 3/6/2023 8:38:00 PM 5292 (0x14AC) Could not open the registry key SOFTWARE\Microsoft\CCM\ExternalEventAgent\Criterias\Differentiation\ATPHealthStatusStateMessage\SyncStatus with error 0x80070002. ExternalEventAgent 3/6/2023 8:38:00 PM 5292 (0x14AC) Could not open the registry key SOFTWARE\Microsoft\CCM\ExternalEventAgent\Criterias\Differentiation\ATPHealthStatusStateMessage with error 0x80070002. ExternalEventAgent 3/6/2023 8:38:00 PM 5292 (0x14AC) Failed to load previous values of Differentiation criteria ATPHealthStatusStateMessage with error 0x80070002. ExternalEventAgent 3/6/2023 8:38:00 PM 5292 (0x14AC) Failed to load criteria before processing input. ExternalEventAgent 3/6/2023 8:38:00 PM 5292 (0x14AC) Sent 0 state messages successfully and skipped 0 input entries. ExternalEventAgent 3/6/2023 8:38:00 PM 5292 (0x14AC)
I have a lot of this clients having CM Agent running, SCEP installed but the columns Endpoint Protection Definition Last version and Endpoint Protection Engine Version in the console remain blank....
2023-03-06_17-20-46 SCEP Missing registry.pdf
Thanks,
Dom