My SMS_MP_CONTROL_MANAGER log is being spammed with this error after upgrade:

MP has rejected registration request due to failure in client certificate (Subject Name: LOCALHOST) chain validation. If this is a valid client, Configuration Manager Administrator needs to place the Root Certification Authority and Intermediate Certificate Authorities in the MPs Certificate store or configure Trusted Root Certification Authorities in primary site settings. The operating system reported error 2148204810: A certificate chain could not be built to a trusted root authority. 

To my knowledge this has never been set - Trusted Root Certification Authorities has always been None Specified... Thoughts?

Hi,

What's the Client Certificate? Self-signed?

Please uncheck the two options to see if the client get registered successfully.

*Use PKI client certificate (client authentication capability) when available)
*Clients check the certificate revocation list (CRL) for site system.

This is a global settings change so I would rather not.  I really just want to exclude my MP from getting the client update but leave on Automatic Updating of clients... Is that possible?

Yes, I know this is an old post, but Im trying to clean them up. Did you solve this problem, if so what was the solution?

Appeared to fix itself I did not do anything ???

• Proposed as answer by Garth JonesMVP, Moderator 19 hours 10 minutes ago
• Marked as answer by cfreeman21 19 hours 9 minutes ago