Share via

SCCM 1702 Updates not coming through

Ryan Elliott 1 Reputation point
2022-05-11T23:24:41.353+00:00

I am currently experiancing an issue with my SCCM server not recieving the updates from microsofts server and when I check dmpdownloader.log I see

ERROR: Failed to download Admin UI content payload with exception: The request was aborted: Could not create SSL/TLS secure channel.
Failed to call AdminUIContentDownload. error = Error -2146233079
ERROR: GetSccmConnectedServiceUrl Exception System.Net.WebException: The request was aborted: Could not create SSL/TLS secure channel.~~ at System.Net.HttpWebRequest.GetResponse()~~ at Microsoft.ConfigurationManager.DmpConnector.Connector.SCCMConnectorUtility.GetSccmConnectedServiceUrl(IWebProxy prx)

There is no proxy in the way or firewall that would block these sites at all I can access them through Internet explorer on the server and from other machines on the network I have tried everything that I can think of any advice is greatly appreciated

Microsoft Security | Intune | Configuration Manager | Other
Windows for business | Windows Server | User experience | Other
0 comments

3 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. AllenLiu-MSFT 49,436 Reputation points Microsoft External Staff
    2022-05-12T07:23:59.647+00:00

    Hi, @Ryan Elliott

    Thank you for posting in Microsoft Q&A forum.

    This issue might occurs when the Baltimore CyberTrust Root certificate is missing, expired, or corrupted.
    You may check your Baltimore CyberTrust Root under Trusted Root Certificate Authority.
    https://learn.microsoft.com/en-us/troubleshoot/mem/configmgr/service-connection-point-not-download-updates

    If the answer is the right solution, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

  2. Limitless Technology 40,081 Reputation points
    2022-05-17T07:39:28.917+00:00

    Hi there,

    Beginning with Configuration Manager current branch version 1702, clients use boundary groups to find a new software update point, and to fallback and find a new software update point if their current one is no longer accessible. If you install a new site that runs version 1702 or later, you must assign software update points to a boundary group before clients can find and use them.

    Configuration Manager clients don't get software updates https://learn.microsoft.com/en-us/troubleshoot/mem/configmgr/clients-not-get-software-updates

    Also check if the required ports are opened https://learn.microsoft.com/en-us/mem/configmgr/core/plan-design/hierarchy/ports

    -------------------------------------------------------------------------------------------------------------------------------------------

    --If the reply is helpful, please Upvote and Accept it as an answer--

    0 comments
  3. Garth 5,806 Reputation points
    2022-05-17T11:19:29.42+00:00

    Btw 1702 is a really old version, you should upgrade to a newer version too.

    0 comments

Your answer

Answers can be marked as 'Accepted' by the question author and 'Recommended' by moderators, which helps users know the answer solved the author's problem.