I added the Root CA Cert in the ConfigMgr Site Communication Settings, and changed the registry settings in the location shown below, and it resolved the issue that was showing up.
This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
Hi Experts,
I have installed MECM and the Management Point is showing as Critical. I checked the Component Status error and the SMS_MP_CONTROL_Manager was showing an error as shown below:
I also checked the mp_control.log. This showed the below error:
After this, I tried to access the "http://SERVERNAME/sms_mp/.sms_aut?mplist" and "http://SERVERNAME/sms_mp/.sms_aut?mpcert" but this was also showing as 403: Forbidden as shown:
I need to have MP communication Protocol as HTTPS. How do I proceed from here?
I added the Root CA Cert in the ConfigMgr Site Communication Settings, and changed the registry settings in the location shown below, and it resolved the issue that was showing up.
This is due to cert related issue.
Do you have cert selection in the IIS bindings? what is your site communication properties looks like? do you use CRL checking?
Try to uncheck the CRL if you are not using in the site communication settings.
Thanks,
Eswar
www.eskonr.com
First of all, you should always remove or mask sensitive information when sharing screenshots. Secondly, as EswarKoneti suggested, you need to check for certificate requirements if you are planning to use full Https mode for communication. Alternatively, you do have the option to use Ehttp as well.
Are you using PKI certs? Is your ConfigMgr configure d correctly for PKI? Look at the official link below to validate your configuration.
I still suggest to consider Ehttp if it is not an absolute requirement for you to use full Https. Microsoft introduced Ehttp for this very scenario to reduce the burden of managing PKI certs.