Video Tutorial – Troubleshooting Tips SCCM CMG Connection Analyzer

0
SCCM CMG Connection Analyzer Tool

SCCM CMG is a critical component for your SCCM infrastructure. SCCM Cloud Management Gateway(CMG) connectivity is vital for co-managed or internet client managed devices. You will learn tips about SCCM CMG connection analyzer through this post.

[Related PostFix to CMG Client Communication Failure Error 0x87d0027e]

What is SCCM CMG Connection Analyzer?

SCCM 1806 onwards, you have a new in-console utility called CMG connection analyzer. This utility is for real-time verification to help CMG related troubleshooting. The SCCM in-console utility checks the current status of the service, and the communication channel through the CMG connection point to any management points that allow CMG traffic.

How to Launch CMG Connection Analyzer?

There are two prerequisites for CMG connection analyzer. You should have an active cloud management gateway used by internet-based clients. And your SCCM site on-boarded to Azure services for cloud management.

SCCM CMG connection analyzer in-console utility is located in the ribbon menu of SCCM console.

  1. Navigate to  \Administration\Overview\Cloud Services\Cloud Management Gateway
  2. Select you CMG service name
  3. Click on Connection analyzer in the ribbon
  4. Login to connection analyzer Azure AD user*. This Azure AD user should have appropriate access on Azure instances of CMG. This can be tested using normal AAD user. Also, the SCCM console user should also have appropriate RBAC access to check all connections on remote site servers.
  5. Make sure the connection “Signed in successfully
  6. Click on start button to kick off the analysis

SCCM CMG Connection Analyzer* Azure AD user: use this option to simulate communication the same as a cloud-based user identity logged on to an Azure AD-joined Windows 10 device. Click Sign In to securely enter the credentials for this Azure AD user account.

Another option to login to CMG connection analyzer is with Client certificate: use this option to simulate communication the same as an SCCM client with a client authentication certificate (PFX files).

[Related PostFix to CMG Client Communication Failure Error 0x87d0027e]

Video Tutorial – SCCM CMG Troubleshooting Tips

The Video tutorial will help you to understand the troubleshooting tips for SCCM cloud management gateway.

  1. Log Analysis
  2. Azure Portal Analysis
  3. Login Connection Analyzer
  4. Start Connection Analyzer

Deep Dive – SCCM CMG Connection Analyzer

SCCM CMG connection analyzer tool helps you to analyze end to end CMG communication scenario in your environment. It checks remote site systems, CMG connection points, and Azure Services.

Following steps are the current checks of SCCM CMG Connection Analyzer tool (1806).

  1. SCCM CMG service is in ready state checks
  2. Connection check to the SCCM CMG service to see if it’s running
  3. SCCM CMG Configuration is up to date or not – Check configuration settings of the CMG service is up to date
  4. SCCM CMG Connection Point/s connection status checks
  5. MP/SUP Site system roles check to confirm SCCM CMG options are enabled on-site system configurations
  6. Check the MP communication to test the CMG channel for MP

SCCM CMG Connection Analyzer - CMG Status Check

Deep Dive – SCCM CMG Logs

Log files related to Cloud Management Gateway are given below. You can check the details in the log files to troubleshoot in details. ACMCMG01 is my SCCM CMG and CDP service name.

  1. CloudMgr.log
  2. CMG-acmcmg01-ProxyService_IN_0-CMGContentService.log = SCCM Cloud DP log
  3. CMG-acmcmg01-ProxyService_IN_0-CMGService.log = SCCM CMG Log

CloudMgr.log is the place where you can check the service states of the SCCM CMG. One example of ServiceState 2 is given below. This service state is when I stopped the Azure VM for CMG services.

UpdateServiceInfo: Service 16777218 to ServiceState 2 ServiceInfoStateDetail 2009
ERROR: Exception occured during monitoring of service 5351e58bea6d46e3b148ee2d : Exception Microsoft.ConfigurationManager.AzureManagement.FailedToCommunicateToServiceException: Failed to contact Azure service. ---> System.ServiceModel.EndpointNotFoundException: There was no endpoint listening at https://management.core.windows.net/dda5f69a-5a3b-4ecc-b354-db1223d95633/services/hostedservices that could accept the message. This is often caused by an incorrect address or SOAP action. See InnerException, if present, for more details. ---> System.Net.WebException: The remote name could not be resolved: 'management.core.windows.net'~~   at System.Net.HttpWebRequest.EndGetResponse(IAsyncResult asyncResult)~~   at System.ServiceModel.Channels.HttpChannelFactory`1.HttpRequestChannel.HttpChannelAsyncRequest.CompleteGetResponse(IAsyncResult result)~~   --- End of inner exception stack trace ---~~~~Server stack trace: ~~   at System.ServiceModel.Channels.HttpChannelUtilities.ProcessGetResponseWebException(WebException webException, HttpWebRequest request, HttpAbortReason abortReason)~~   at System.ServiceModel.Channels.HttpChannelFactory`1.HttpRequestChannel.HttpChannelAsyncRequest.CompleteGetResponse(IAsyncResult result)~~   at System.ServiceModel.Channels.HttpChannelFactory`1.HttpRequestChannel.HttpChannelAsyncRequest.CompleteSend(IAsyncResult result)~~   at System.ServiceModel.Channels.HttpChannelFactory`1.HttpRequestChannel.HttpChannelAsyncRequest.SendWebRequest()~~   at System.ServiceModel.Channels.HttpChannelFactory`1.HttpRequestChannel.HttpChannelAsyncRequest.BeginSendRequest(Message message, TimeSpan timeout)~~   at System.ServiceModel.Channels.RequestChannel.BeginRequest(Message message, TimeSpan timeout, AsyncCallback callback, Object state)~~   at System.ServiceModel.Dispatcher.RequestChannelBinder.BeginRequest(Message message, TimeSpan timeout, AsyncCallback callback, Object state)~~   at System.ServiceModel.Channels.ServiceChannel.SendAsyncResult.StartSend(Boolean completedSynchronously)~~   at System.ServiceModel.Channels.ServiceChannel.SendAsyncResult.FinishEnsureOpen(IAsyncResult result, Boolean completedSynchronously)~~   at System.ServiceModel.Channels.ServiceChannel.SendAsyncResult.StartEnsureOpen(Boolean completedSynchronously)~~   at System.ServiceModel.Channels.ServiceChannel.SendAsyncResult.StartEnsureInteractiveInit()~~   at System.ServiceModel.Channels.ServiceChannel.BeginCall(String action, Boolean oneway, ProxyOperationRuntime operation, Object[] ins, TimeSpan timeout, AsyncCallback callback, Object asyncState)~~   at System.ServiceModel.Channels.ServiceChannelProxy.InvokeBeginService(IMethodCallMessage methodCall, ProxyOperationRuntime operation)~~   at System.ServiceModel.Channels.ServiceChannelProxy.Invoke(IMessage message)~~~~Exception rethrown at [0]: ~~   at System.Runtime.Remoting.Proxies.RealProxy.HandleReturnMessage(IMessage reqMsg, IMessage retMsg)~~   at System.Runtime.Remoting.Proxies.RealProxy.PrivateInvoke(MessageData
ServiceState 2 - Failed to contact Azure service - Storage account not found for service

SCCM CMG Connection Analyzer -clouldmgr.log

[Related PostFix to CMG Client Communication Failure Error 0x87d0027e]

Resources

Microsoft Docs – SCCM CMG Connection Analyzer – here

Blog – CMG connection Analyzer Tool from Nick https://nhogarth.net/2018/06/01/sccm-tp-1805-cmg-connection-analyzer/

Blog – CMG Troubleshooting –Ronny https://ronnydejong.com/2018/07/20/troubleshooting-cloud-management-gateway-quick-effectively-w-cmg-connector-analyzer/

 

LEAVE A REPLY

Please enter your comment!
Please enter your name here

This site uses Akismet to reduce spam. Learn how your comment data is processed.