SCCM 2103 Known Issues Fixes | ConfigMgr | Configuration Manager

In this post, you will learn more about SCCM 2103 known issues. The production version of 2103 is generally available. Let’s understand the fixes already issued with the 2103 version. You can check out our 2103 upgrade guide.

The latest version of ConfigMgr 2103 contains fixes and feature improvements. As I always say, this is not an all-inclusive list of changes and fixes included in the 2103 version. However, the list of fixes documented below is most relevant for SCCM admins as per the Microsoft production team.

Related PostTop 5 New Features of SCCM 2103 | ConfigMgr.

SCCM 2103 Hotfixes

Let’s check the hotfixes released for the Configuration Manager 2103 production version. I will try to update this list whenever Microsoft releases new hotfixes for 2103. There are two hotfixes released for 2103 while the last update of this post.

Patch My PC
  • The Hotfix KB10372804 to fix MBAM Agent API to escrow recovery keys issue.
  • Out of Band Hotfix KB10216365 to fix SQL always-on issue.
  • Latest Hotfix for SCCM 2103 – KB10036164 (Update Rollup).
  • First KB released for SCCM 2103 is KB9603111 (available in console).
  • 2nd KB KB9833643 for ConfigMgr 2103 (Out of Band).
  • Client Update KB10589155.
  • Tenant Attach Fix KB10582136.

SCCM 2103 Fixes

The following are the SCCM known issues fixed with the Configuration Manager (a.k.a SCCM) 2103 version. This is not an all-inclusive list of fixes that are included with ConfigMgr 2103. You can read more about this from Microsoft documentation.

ADRADR fails on servers that do not have internet access after updating to 2010
Azure Migration ToolThe ExtendMigrateToAzure tool fails to add accounts to the local administrators’ group
CAS RemovalAdding a new DP to a package triggers the redistribution of that package to all DP’s after CAS removal
CAS RemovalThe Configuration.mof used with hardware inventory is not created on a primary site after removing CAS
ClientClient user policy namespaces are created on multi-user terminal servers even when explicitly disabled
ClientClients do not download package content over a metered connection
ClientComputers randomly don’t receive policy data based on computer variables (SMS_MachineVariable)
Client CacheNon-zero success codes, such as 3010 (restart pending) – The exit code is 3010, the execution status is FailureNonRetry
Cloud DPThe upload of more than 10 packages at one time to a cloud distribution point fails
CMPivotThe CMPivot feature incorrectly requires access to the default security scope
CollectionCollection Evaluator Performance Improvement
Co-ManagementCo-management workloads may be unexpectedly deployed to newly installed ConfigMgr clients.
Content LibraryMultiple improvements were made to the content library move and cleanup processes
DPOrphaned content may be left after deleting application revisions
Hotfix InstallationSCCM hotfixes that only update the admin console will no longer require a site reset.
Microsoft DefenderState messages generated by the on-premises ATP monitoring feature may fail to process on the site server
OSDOSD from boot media fail to retrieve content from a cloud DP if custom ports are defined
OSDThe SMS Agent Host (ccmexec.exe) incorrectly tries to resolve a site code when you use standalone media
ReportingThe Compliance 4 – report terminates unexpectedly
SQL ServerSQL Server TempDB may grow unexpectedly because Datawarehouse issues
SQL ServerImprovements were made to the SQL Server change tracking cleanup task.
SUPThe synchronization process fails on a remote software update point (SUP)
Task Sequence A command defined in the SMSTSPostAction task sequence variable runs twice after a device restart.
Task Sequence Task sequences may fail or take longer than expected to run following a computer restart
Task Sequence The Format and Partition Disk task sequence step fails when more than 99 disks are present
Task Sequence Various custom client settings may fail to apply if an operating system deployment task sequence fails to remove WMI instances
SCCM 2103 Known Issues – Fixes table | ConfigMgr

SCCM 2103 Known Issues

Microsoft added a new known issue to the document (documented known issues) to the 2103 release notes. I’ll keep the list of SCCM 2103 known issues updated. Also, if you want to highlight some known issues, please add them to the comments section below.

Latest Known Issues of SCCM 2103

  • Task sequences/task sequence steps, created before installation of version 2103 update fail to import. The Import Task Sequence Wizard displays the following error –
    • One or more errors occurred result may be incomplete.
  • No data is shown in the Windows 10 servicing dashboard, even after completing the troubleshooting steps listed in the following support article. The Windows 10 servicing dashboard shows no data
  • The New-CMBootableMedia PowerShell cmdlet returns the error Could not find the SCCM UI installation directory after updating to version 2103.
  • SCCM Azure Active Directory (AAD) joined clients that are also using PKI issued certs can get into a high CPU utilization situation that impacts the end-user. This occurs because of an issue with the SMS Agent Host (ccmexec.exe) attempting to continually renew the “self-prove” token with the Management Point (MP).
  • During reassignment from one site to another, clients are unable to evaluate policy or communicate via the notification channel. Errors resembling the following are recorded in the ccmexec.log file.
    • Error registering hosted class ‘{Class_GUID}’. Code 0x80040111.
  • The report Compliance 4 – Updates by vendor month year does not contain expected data.
  • App usage data is stale or unavailable for devices in the Desktop Analytics portal in the Microsoft Endpoint Manager admin center. This only affects notebook computers that run for multiple days without restarting. An error resembling the following is recorded in the SensorManagedProvider.log file on affected devices.
    • Other exception – Value was either too large or too small for an Int32.
  • After updating to SCCM’s current branch, version 2103, a backlog of .MEP (machine extended policy) files occur in the PolicyPV inbox on the site server. This backlog also causes delays in processing site reassignment data.
  • Devices upgrade to the 2103 version of the SCCM client faster than expected after promoting the upgrade from pre-production. In addition, the WebView 2 client component is installed repeatedly.
  • State message processing hangs when encountering a corrupt file instead of discarding the file as expected. Errors resembling the following are recorded in the statesys.log file. –
    • Thread ‘State Message Processing Thread #0″ id:14888 terminated abnormally.
  • State message processing fails for some cloud management gateway (CMG) messages. Errors resembling the following are recorded in the statesys.log file.
    • SQL MESSAGE: dbo.spProcessStateReport – Error: Record 1 returned an ‘invalid record’ return code and failed processing with error 8115.
  • A new SCCM console extension created for the community hub for version 2103 will fail to load if a prior console extension modifies the same node with the same action.
  • The SQL Server move process fails after a highly available site is failed over to the passive site server. This occurs due to a certificate problem that resembled the following in the ConfigMgrSetup.log file.
    • ERROR: Failed to decrypt SQL Server machine serialized pfx certificate (LastError=0)
  • The Wake on LAN feature does not function as expected after a central administration site (CAS) is removed due to a missing site control property value.
  • The SMS Agent Host service may terminate unexpectedly due to a policy agent issue.
  • CMPivot queries do not run on computers configured with the Japanese system locale.
  • After removing a central administration site, packages are distributed to all distribution points (DP) when adding them to just a single new DP.
  • Failover from an active to a passive site fails in an environment with a large number of orphaned package status data records.

Issue #1 – Old Console Extensions

ConsoleYour old-style console extensions will stop working when you enable Only allow console extensions that are approved for the hierarchy option. You can’t use the unapproved extensions until you approve from the new Console Extension node. 
SCCM 2103 Known Issues – Console Extension

The above console extension SCCM 2103 known issue will be applicable only if you have enabled the following check box from hierarchy settings properties. You can get more details in Microsoft Docs.

  • Disable the option “Only allow console extensions that are approved for the hierarchy” to make the old-style console extensions work again.
SCCM 2103 Known Issues Fixes | ConfigMgr
SCCM 2103 Known Issues Fixes | ConfigMgr

Issue #2 – Console Lock?

I have seen some issues with admin console usability/accessibility. Basically, the console gets locked when you open more than one nested window.


I can’t use the console until I close the Query Rule Properties Window as you see in the below picture. I have experienced this in the Namaste Techies show as well.

SCCM 2103 Known Issues Fixes | ConfigMgr
SCCM 2103 Known Issues Fixes | ConfigMgr

This SCCM 2103 known issue is not only related to collection, but it’s wider applicable to all parts of the console. For example, if you open up more than one nested Window from the console, it disables access to the console.

What do I mean by more than one nested Window? Let’s take an example to explain it better.

  • If I select a Task Sequence and click on the EDIT button, it opens up an additional Window #1.
  • If I go to any one of the actions and click on Add condition option, it opens up the additional Window #2 on top of Window #1.
  • Now the console is locked! You can access anything from the console until you close Windows #2.
SCCM 2103 Known Issues Fixes | ConfigMgr
SCCM 2103 Known Issues Fixes | ConfigMgr

Issue #3 – 2103 MP installation failed

Panu Saukko (Microsoft MVP) shared an issue on Twitter related to SCCM 2103 Management Point installation that failed with the following error – LocalSystem’s decimal separator char was “,” instead of “.”! And there was one decimal value in the MOF file.

Panu got it working by changing the decimal separator, but it took some time to figure out what was wrong. More details are available in the Twitter thread.

Production Ready

This post is to help SCCM admins easily go through a list of SCCM 2103 Known Issues production versions. Most of the highlighted issues are collected via social media channels and Microsoft documentation.

NOTE! – These known issues are not blockers for SCCM 2103 production upgrade.



7 thoughts on “SCCM 2103 Known Issues Fixes | ConfigMgr | Configuration Manager”

  1. Oh my gosh thank you for this! #1 was killing me and I couldn’t figure out what the issue was and why MDT wasn’t integrating with SCCM properly. Thank you!!

  2. Hi Anoop,

    Are you aware if any known issues btw Primary site & SUP’s related to WMI connectivity after SCCM 2103 CB upgrade?

    WCM.log shows this error –

    CWmi::Connect() failed to connect to \\\root\CIMv2. Error = 0x800706BA
    CWSUSConfigManager::ConnectWMI() – Failed to connect to SUP server.

    Any thoughts?

    • Hi,
      We have faced the same issue after 2103 upgrade.
      The fix is to specify service account in “Use credentials to connect to the WSUS server” instead of site server account in configuration of Software Update Point.

  3. Hi Anoop!

    I have an issue with our SCCM. This is what occurred:

    I created a snapshot of the Virtual Machine, where SCCM is installed before installing Hotfix KB10036164. After installing this hotfix, I noticed that WSUS was having issues communicating with SCCM. The Admin Console updated to the latest version (Version 5.2103.1059.3100) from version (5.2103.1059.1800) on the primary server. However, I was also having an issue upgrading the Admin Console on IT Users PC’s. What I did, was reverted back to the VMware Snapshot I took before running the hotfix.

    This is what is happening now:
    The WSUS issue has been fixed, but the Hotfix KB10036164, seems to have been installed. Every time I open the Console, it says “A new version of the console is available (5.2103.1059.3100). Working in the old console (5.2103.1059.1800) might corrupt data.

    If I try to install the new console, I get a message “Update complete for extension 0 of 1. One or more errors have occurred while installing new console. Click the “Report” button to review installation log file.
    Please help if you can or send me where I can request help. I don’t know how to get the console to get to work properly again. I have found threads about the “AdminUI.ExtensionInstaller.exe Error: 0 : Microsoft.ConfigurationManagement.ManagementProvider.SmsException\r\nDownloaded file does NOT pass Hash validation.” Error, but they all deal with earlier versions of SCCM. Thank you so much.

    AdminUI.ExtensionInstaller.exe Error: 0 : Extension Installer failed to:ReinstallConsole with errors:ReinstallConsoleFail
    AdminUI.ExtensionInstaller.exe Information: 0 : Start extracting command line:C:\Program Files (x86)\Microsoft Endpoint Manager\AdminConsole\bin\AdminUI.ExtensionInstaller.exe ReinstallConsole
    AdminUI.ExtensionInstaller.exe Information: 0 : found, setup wmi connection
    AdminUI.ExtensionInstaller.exe Information: 0 : argument:ReinstallConsole found, add ReinstallConsole to tasks
    AdminUI.ExtensionInstaller.exe Information: 0 : Successfully extracted command line: C:\Program Files (x86)\Microsoft Endpoint Manager\AdminConsole\bin\AdminUI.ExtensionInstaller.exe ReinstallConsole
    AdminUI.ExtensionInstaller.exe Information: 0 : AdminUI.ExtensionInstaller.exe will ReinstallConsole for console on this machine connecting to in UI mode.
    AdminUI.ExtensionInstaller.exe Information: 0 : Start checking local console information.
    AdminUI.ExtensionInstaller.exe Information: 0 : Start checking if there are admin console processes running.
    AdminUI.ExtensionInstaller.exe Information: 0 : Reinstalling Console…
    AdminUI.ExtensionInstaller.exe Information: 0 : Calling GetFileBinary method in WMI to get file bytes for UIManifest.xml
    AdminUI.ExtensionInstaller.exe Information: 0 : Starting downloading of file:C:\Program Files (x86)\ConfigMgr10\AdminconsoleSetup\469A3000-14DA-425E-B288-4B0E16DB87C4\UIManifest.xml
    AdminUI.ExtensionInstaller.exe Warning: 0 : Downloaded file does NOT match Hash, delete the file.
    AdminUI.ExtensionInstaller.exe Error: 0 : Microsoft.ConfigurationManagement.ManagementProvider.SmsException\r\nDownloaded file does NOT pass Hash validation.\r\n at Microsoft.ConfigurationManagement.AdminConsole.ExtensionInstaller.WmiInstallationDataDownloader.DownloadFile(IExtensionFile file, String downloadPath, Boolean validateHash)
    at Microsoft.ConfigurationManagement.AdminConsole.ExtensionInstaller.ExtensionHandler.ReinstallConsole()\r\nNo details are available for this error.\r\n

  4. Hi Anoop, we recently upgrade to CB 2103 and are seeing degrade content distribution issue. Have you come across the issue & any solutions ?

  5. Hi Anoop,

    We recently getting an invalid class error while placing the device collections in maintenance mode in configuration manager console. Please suggest


Leave a Comment

This site uses Akismet to reduce spam. Learn how your comment data is processed.