Aug 11 2022 02:54 PM
This is the status where I am having problems joining the device to Hybrid Autopilot domain. Not sure whether this is a connectivity issue between the laptop to the INTUNE connector? I can ping the domain controller from Intune connector and no problem.
Aug 12 2022 01:03 AM
SolutionAug 12 2022 06:55 AM
@Harm_Veenstra This time after ensuring that the service account is all set correct and tried again and I got this error message.
Aug 12 2022 07:04 AM
Aug 12 2022 08:05 AM - edited Aug 12 2022 08:36 AM
No, it does not have Internet access. Only opened to those URLs that were mentioned in the network requirements. Should it have Internet access? Ain't we exposing this then to the Internal network?
Yes, Harm. We followed the Network Requirements documents
https://docs.microsoft.com/en-us/mem/autopilot/networking-requirements
https://docs.microsoft.com/en-us/mem/intune/fundamentals/intune-endpoints
Other than that nothing. Only Microsoft location it goes to everything else is denied. I also see that this is there in the certificateConnectors event log
CertificateConnector:
Failed to retrieve URL
System.Net.WebException: The request was aborted: Could not create SSL/TLS secure channel.
at System.Net.HttpWebRequest.GetResponse()
at Microsoft.Management.Services.ConnectorCommon.ServiceLocator.RetrieveServiceLocations(Uri LocationServiceUri)
at Microsoft.Management.Services.ConnectorCommon.ServiceLocator..ctor(String serviceBaseUrl, X509Certificate2 channelEncryptionCert, IWebProxy proxy)
at Microsoft.Management.Services.ConnectorCommon.UrlManager.GetUrlCallback()
Aug 12 2022 08:07 AM
Aug 12 2022 08:57 AM
Aug 12 2022 09:07 AM
Aug 12 2022 09:16 AM
Aug 12 2022 01:17 PM
Aug 12 2022 01:19 PM
Aug 12 2022 01:33 PM
Aug 15 2022 05:49 AM
Aug 15 2022 10:35 AM
Aug 15 2022 10:37 AM
Aug 15 2022 10:51 AM - edited Aug 15 2022 11:33 AM
Yes, I do see I am sorry have too many stuff going on. I see that there is event ids
30122 OdjRequestHandlingDownloadPipe
30132 OdjRequestBlobFailure
30122
ODJRequestHandlingPipelineDownload_Failure: Failed to download ODJ requests.
InstanceId:We are unable to complete your request because a server-side error occurred. Please try again. [Exception Message: "DiagnosticException: 0x0FFFFFFF. We are unable to complete your request because a server-side error occurred. Please try again."] [Exception Message: "DiagnosticException: 0x0000040C. HTTP connection timed out. Check Firewall ports or Proxy settings if exist."] [Exception Message: "odjHttp.Call failed. activityId=c434c6dd-0ba0-416a-9e61-b257eb259cca parameters={"options":{"batchSize":null,"connectorBuildVersion":"6.2204.38.3","connectorName":"INCONSERVER"}}"] [Exception Message: "Failed to send http request to uri=https://fef.amsua0202.manage.microsoft.com/TrafficGateway/TrafficRoutingService/RAODJPlus/StatelessO... method=POST"] [Exception Message: "An error occurred while sending the request."] [Exception Message: "Unable to connect to the remote server"] [Exception Message: "A connection attempt failed because the connected party did not properly respond after a period of time, or established connection failed because connected host has failed to respond 20.37.153.1:443"],
DiagnosticCode:CBEB90D3-5A20-4109-B8C9-CF3D6B32BF71,
DiagnosticText:Unknown_Error
30132
RequestOfflineDomainJoinBlob_Failure: Failed to generate ODJ blob
RequestId: b47e2875-71ef-4f36-b844-c63861bae6b9
DeviceId: e8a92cc9-c1cd-4b27-98f2-1a23fb49952d
DomainName: xyz.local
RetryCount: 0
ErrorDescription: Failed to call NetProvisionComputerAccount machineName=COMPUTERNAME
InstanceId: CBEB90D3-5A20-4109-B8C9-CF3D6B32BF71
DiagnosticCode: 2050
WinErrorCode: 87
DiagnosticText: Failed to get the ODJ Blob. A parameter is incorrect. [Exception Message: "DiagnosticException: 0x00000802. Failed to get the ODJ Blob. A parameter is incorrect."] [Exception Message: "Failed to call NetProvisionComputerAccount machineName=computername"]
I think I found the solution below. So, I am wondering whether it is the CONFIG file in ODJConnetorEnrollmentWizard.exe.config or is it the ODJCOnnectorSvc.exe.config. I need to read through this more. But, I have my INTUNE CONNECTORS appearing fine there was no issues when I installed it.
I think this URL is not there and we are trying to add it now.
https://fef.amsua0202.manage.microsoft.com/
Maybe this should fix it.
After you install the Intune Connector for Active Directory, it doesn't appear in Intune. Additionally, the following error entry is logged in the ODJ Connector Service event log on the server that hosts the connector:
"DiagnosticText": "We are unable to complete your request because a server-side error occurred. Please try again. [Exception Message: \"DiagnosticException: 0x0FFFFFFF. We are unable to complete your request because a server-side error occurred. Please try again.\"] [Exception Message: \"Failed to get a value for Key: OdjServiceBaseUrl\"] [Exception Message: \"The given key was not present in the dictionary.\"]"
Note
The ODJ Connector Service event logs are located under Application and Services Logs > ODJ Connector Service in the Event Viewer.
This issue usually occurs when you use a proxy server in your environment. Additional configuration settings are required on the proxy so that the Intune Connector can communicate with the Intune service.
To fix the issue, add the required proxy configuration to the following files:
To do this, follow these steps:
Open the .config file. You can see the following lines at the top of the file:
<?xml version="1.0" encoding="utf-8" ?>
<configuration>
Add the following lines after <configuration>, then save the file.
<system.net>
<defaultProxy>
<proxy usesystemdefault="false" proxyaddress="http://<proxy server address>:<port>" />
</defaultProxy>
</system.net>
Restart the Intune ODJConnector Service.
Aug 15 2022 12:22 PM
Aug 15 2022 05:46 PM
Aug 12 2022 01:03 AM
Solution