Hello everyone!
Sorry, didnt found SCCM forum...
I encountered such a problem that the agent refuses to be installed on the server with Azure AD Connect. Analysis of the logs showed that the problem is related to the error "MP Reg: Client in-band certificate is not valid due to failures in certificate
chain validation, Raising status event. Failure HR = 0x800b010a, In-band Cert SubjectName = ServerName". This error occurs because the server certificate was issued by the Microsoft PolicyKeyService Certificate Authority. But you can't get a certificate
from this CA. Because of this, it is not possible to build a trust chain and because of this, the agent is not placed on the machine.
Has anyone encountered this?