Forum Discussion
InTune management extension SecureChannelFailure (Could not create SSL/TLS secure channel)
I'm experiencing networking problem when Microsoft Endpoint manager is trying to deploy InTune management extension from https://endpoint.microsoft.com/ to a Win10 device within a company network. ...
I think that you can point them to the Microsoft article which states all the endpoints that need to be accessible and that it's not supported to use inspection to the manage.microsoft.com endpoint. You can show them that it does work on a non-inspected network and that it's failing on the corporate network. You have all the information you need for them to do something about this issue...
I'm experiencing some issues with disabling of SSL package inspection to get rid of "SecureChannelFailure" errors from InTune management extension.
Are you sure that "manage.microsoft.com" is the only endpoint where SSL inspection isn't supported, or does the limitation also apply to subdomains (*.manage.microsoft.com) and/or other domains mentioned on https://docs.microsoft.com/en-us/mem/intune/fundamentals/intune-endpoints ?
Are you sure that "manage.microsoft.com" is the only endpoint where SSL inspection isn't supported, or does the limitation also apply to subdomains (*.manage.microsoft.com) and/or other domains mentioned on https://docs.microsoft.com/en-us/mem/intune/fundamentals/intune-endpoints ?
- Did you try adding / whitelisting it with a wildcard?
- SSL package inspection was temporarily disabled for "manage.microsoft.com" and "*.manage.microsoft.com" during testing. However, InTune management extension still reported the same "SecureChannelFailure" in the log and failed to report "Discovered apps" back to the server.
- Any update?
- Not sure, this was the one listed stating that and could be wildcard?