FIX SCCM Administration Service Issues

SCCM 1906 (TP) onwards, administration service helps SCCM console to communicate with the SMS Provider over HTTPS (instead WMI). In this video post, you will see an issue with SCCM 1906 Technical Preview version “Configuration Manager Can’t connect to the administration Service.”

Introduction

You can now enable some nodes of the SCCM console to use the administration service. This change allows the console to communicate with the SMS Provider over HTTPS instead of via WMI. This change is only applicable to the following nodes:

  • Administrative Users
  • Security Roles
  • Security Scopes
  • Console Connections

Note! – You can read more details about SCCM Administration Service from here.

The Issue

I upgraded to SCCM 1906 technical preview, and since then, I was not able to access four (4) nodes mentioned above.

Whenever I try to access Administrative Users node from SCCM console, it gave me the following error.

“Configuration Manager can’t connect to the administration service. The configuration manager console can’t connect to the site database through the administration service on SCCMTP2.intune.com.”

Configuration Manager can't connect to the administration service
Configuration Manager can’t connect to the administration service

FIX – Administration Service Issue

You need to enable the following configuration/checkbox to get the SCCM console for Administrative users, Security Scopes, and security roles nodes.

  • In the SCCM console, go to the Administration workspace, expand Site Configuration, and select the Sites node. In the ribbon, select Hierarchy Settings.
  • On the General page, select the option to Enable the Configuration Manager console to use the administration service.
FIX - administration Service
FIX – administration Service

Above Fix – Didn’t Work?

As Mentioned in the above video, you need to make sure you have enabled the following settings. Also, it’s worth restarting the SCCM Console.

  • Enable “Use Configuration Manager generated certificates for HTTP site systems.
  • Make sure – SMS Issuing certificate is not BLOCKED
  • Restart the SCCM console and check the SCCM console nodes
FIX - administration Service
FIX – administration Service

Resource

4 Comments
  1. James Oberg says

    I am missing the administration service completely upon updating to 1906. Any thoughts or logs that may help? (the webpage for it gives back 404 even in the administration.log).

    1. Anoop C Nair says

      Have you followed steps which I mentioned in the blog ? SMS provider log might help as well?
      It’s all about enabling that properties and allowing the self signed cert … restart the console

  2. Anthony LaMark says

    Thanks Anoop!
    Your instructions worked for me directly on the site server.
    However, when I try the SCCM console on a remote computer, I get the error again.
    I am wondering if this is by design or is there more configuration to get at the 4 SCCM security nodes on a remote computer?
    Thanks again sir.

  3. Erik says

    Thanks for the assist.. worked like a charm after the 1906 update.

Leave A Reply

Your email address will not be published.

This website uses cookies to improve your experience. We'll assume you're ok with this, but you can opt-out if you wish. AcceptRead More