Patching failure - MECM 2103

Bojan Zivkovic 436 Reputation points
2021-08-16T11:50:18.95+00:00

Hi, two days ago ADR for Windows Server 2016/2019 updates ran and now I see bunch of servers not being updated/restarted with following errors:

ConfigMgr is no longer managing WindowsDO GPO. Set to default values. Mode = LAN. GroupID = empty LocationServices 8/16/2021 4:02:50 AM 5552 (0x15B0)
Calling back with empty distribution points list LocationServices 8/16/2021 4:02:50 AM 5552 (0x15B0)
CCTMJob::UpdateLocations - Received empty location update for CTM Job {A7662E15-9AFA-4DFC-BC3C-BA9F645455F6} ContentTransferManager 8/16/2021 4:02:50 AM 5552 (0x15B0)

Patching had been working flawlessly of all 100+ servers here but now it is completely different story. Only change made in the meantime was adding Windows Server 2019 to SUP sync product list, ADR and renaming SUG/deployment package (last week) but that should not have anything to do with this behavior. Boundaries/Boundary Groups/Reference System ... nothing was changed. Defender Definition updates installation, on the other hand, is working without issues. This is PCI environment so having it up to date is very important.

Microsoft Configuration Manager Updates
Microsoft Configuration Manager Updates
Microsoft Configuration Manager: An integrated solution for for managing large groups of personal computers and servers.Updates: Broadly released fixes addressing specific issue(s) or related bug(s). Updates may also include new or modified features (i.e. changing default behavior).
965 questions
0 comments
Accepted answer
  1. Amandayou-MSFT 11,046 Reputation points
    2021-08-17T02:30:45.523+00:00

    Hi @Bojan Zivkovic ,

    Only change made in the meantime was adding Windows Server 2019 to SUP sync product list, ADR and renaming SUG/deployment package (last week) but that should not have anything to do with this behavior.

    Yes, in fact, if we just change it, there is no effect or error in SCCM.

    According to these errors provided, it seems like a boundary group issue. Even through boundaries/boundary Groups/reference System ... nothing was changed, Please try to run forest discovery and creating IP range boundaries. Then recreate the boundary group and reassign the DP. Kindly check if it works.

    123829-817.png

    If the response is helpful, please click "Accept Answer" and upvote it.
    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

    0 comments

1 additional answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Bojan Zivkovic 436 Reputation points
    2021-08-17T07:17:08.617+00:00

    We have tons of VLANs in environment hence boundaries based on AD site were used right from the start. I just added IP ranges pulled from AD into corresponding boundary groups and see progress - number of systems with status downloading updates is dropping and number of systems with status pending system restart is going up. Will keep monitoring how situation is unfolding. It seems that putting AD sites as BG members is not a best idea - it can work for some time and then issues can pop up.

    Thank you very much.