Will the pre-requisite warning go away if you have HTTPS enabled? Hi, I dont think we need to open the new ports because some parts of Microsoft docs mentioned that it will still be using the HTTP communication for eHttp. This account also establishes and maintains communication between sites. Microsoft recommends using HTTPS communication for all Configuration Manager communication paths, but it's challenging for some customers due to the overhead of managing PKI certificates. Management Insight to evaluate HTTPS connection, ConfigMgr HTTP only Client Communication Is Going Out Of Support | SCCM, https://docs.microsoft.com/en-us/mem/configmgr/core/plan-design/hierarchy/enhanced-http#configure-the-site, https://docs.microsoft.com/en-us/mem/configmgr/core/plan-design/hierarchy/communications-between-endpoints#Planning_Client_to_Site_System, Bitlocker recovery key-related communications, Right-click on the Primary server and go to, Search for SMS Issuing certificate. The SCCM Enhanced HTTP feature secures sensitive client communication without the need for PKI server authentication certificates in SCCM. Alternative Pirate Bay mirrors, other than 247tpb. Use these procedures to pre-provision and verify the trusted root key for a Configuration Manager client. This guide helps you know more about the ConfigMgr eHttp configuration for your SCCM environment. Update 2010 for Microsoft Endpoint Configuration Manager current branch Wondered if we can revert back to plain http as you asked. Enable the site and clients to authenticate by using Azure AD. Primary sites support the installation of site system roles on computers in remote forests. Simple Guide to Enable SCCM Enhanced HTTP Configuration - Prajwal Desai Starting in Configuration Manager version 2103, sites that allow HTTP client communication are deprecated. For Scenario 3 only: A client running a supported version of Windows 10 or later and joined to Azure AD. Any response? Check them out! Once you have enhanced HTTP (e-HTTP), you dont necessarily need to build a very complex PKI infrastructure to enable certificate authentication between client and server. He writes articles on SCCM, Intune, Configuration Manager, Microsoft Intune, Azure, Windows Server, Windows 11, WordPress and other topics, with the goal of providing people with useful information. Clients lost connection to SCCM1902 after CMG Deployment It then adds the account to the appropriate SQL Server database role. Enable a more secure communication method for the site either by enabling HTTPS or Enhanced HTTP. Open the Microsoft Endpoint Configuration Manager administration console and navigate to Administration > Overview > Cloud Services > Cloud Management Gateway; Select . CMG and Co-Management with E-HTTP when users have MFA enabled