SCCM 1702 Updates not coming through

Ryan Elliott 1 Reputation point
2022-05-11T23:24:41.353+00:00

I am currently experiancing an issue with my SCCM server not recieving the updates from microsofts server and when I check dmpdownloader.log I see

ERROR: Failed to download Admin UI content payload with exception: The request was aborted: Could not create SSL/TLS secure channel.
Failed to call AdminUIContentDownload. error = Error -2146233079
ERROR: GetSccmConnectedServiceUrl Exception System.Net.WebException: The request was aborted: Could not create SSL/TLS secure channel.~~ at System.Net.HttpWebRequest.GetResponse()~~ at Microsoft.ConfigurationManager.DmpConnector.Connector.SCCMConnectorUtility.GetSccmConnectedServiceUrl(IWebProxy prx)

There is no proxy in the way or firewall that would block these sites at all I can access them through Internet explorer on the server and from other machines on the network I have tried everything that I can think of any advice is greatly appreciated

Windows Server
Windows Server
A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.
13,372 questions
Microsoft Configuration Manager
0 comments No comments
{count} votes

3 answers

Sort by: Most helpful
  1. AllenLiu-MSFT 46,531 Reputation points Microsoft Vendor
    2022-05-12T07:23:59.647+00:00

    Hi, @Ryan Elliott

    Thank you for posting in Microsoft Q&A forum.

    This issue might occurs when the Baltimore CyberTrust Root certificate is missing, expired, or corrupted.
    You may check your Baltimore CyberTrust Root under Trusted Root Certificate Authority.
    https://learn.microsoft.com/en-us/troubleshoot/mem/configmgr/service-connection-point-not-download-updates


    If the answer is the right solution, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.


  2. Limitless Technology 39,721 Reputation points
    2022-05-17T07:39:28.917+00:00

    Hi there,

    Beginning with Configuration Manager current branch version 1702, clients use boundary groups to find a new software update point, and to fallback and find a new software update point if their current one is no longer accessible. If you install a new site that runs version 1702 or later, you must assign software update points to a boundary group before clients can find and use them.

    Configuration Manager clients don't get software updates https://learn.microsoft.com/en-us/troubleshoot/mem/configmgr/clients-not-get-software-updates

    Also check if the required ports are opened https://learn.microsoft.com/en-us/mem/configmgr/core/plan-design/hierarchy/ports

    -------------------------------------------------------------------------------------------------------------------------------------------

    --If the reply is helpful, please Upvote and Accept it as an answer--

    0 comments No comments

  3. Garth 5,801 Reputation points
    2022-05-17T11:19:29.42+00:00

    Btw 1702 is a really old version, you should upgrade to a newer version too.

    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.