I installed a Sccm 2012 SP1 with all roles on a single server, the SQL- Instance is local too. The installation was made with http and without PKI, but now I need the inventory of Mac's so I need the communication with https.

I changed the "Client Computer Communiction" on the Primary site to "HTTPS only" and the same on the management point role.

After I made the certificate for the server and the clients with this guide:
http://technet.microsoft.com/en-us/library/gg682023.aspx

On the site status and component status are no errors but the communication from client to server didn't work anymore. I started the client-installation from server on a new client and the installation works but on the server I don't see that the client is installed.

On the clientIDManagerStartup.log are this errors:

[RegTask] - Client is not registered. Sending registration request for GUID:327B425B-9E36-481A-A0FC-05BD0654182B ... ClientIDManagerStartup 08.08.2013 16:33:41 2876 (0x0B3C)
RegTask: Failed to send registration request message. Error: 0x87d00231 ClientIDManagerStartup 08.08.2013 16:33:41 2876 (0x0B3C)
RegTask: Failed to send registration request. Error: 0x87d00231 ClientIDManagerStartup 08.08.2013 16:33:41 2876 (0x0B3C)

What could be the issue? On what log file I found a reason?

clients may need to get the PKI cert through auto-enroll GPO.  check out these sites

 http://wibier.me/https-communication-sccm-2012-sp1-part-1/  

 http://www.jamesbannanit.com/2011/04/certificate-requirements-for-sccm-2012/ 

That error translates to "Transient error. Source: System Center Configuration Manager". Have you already re-started ccmexec on a client?
I wouldn't have switched the entire site roles to https though. Why haven't you set up a second MP/DP that are using https and keeping the http roles in place?

I made it with this description but it didn't work. I can open the website with https without certificate error, the installed client shows "Client Certificate: PKI" but the communication didn't work. 

In the ccmmessaging.log there is always this error:

Successfully sent security settings refresh message. CcmMessaging 16.08.2013 11:46:31 1568 (0x0620)
Successfully sent location services HTTP failure message. CcmMessaging 16.08.2013 11:46:31 1568 (0x0620)
Post to http://srvSCCM2012.ath.int/ccm_system_windowsauth/request failed with 0x87d00231. CcmMessaging 16.08.2013 11:46:31 1568 (0x0620)
[CCMHTTP] ERROR: URL=http://srvSCCM2012.ath.int/ccm_system_windowsauth/request, Port=80, Options=480, Code=0, Text=CCM_E_BAD_HTTP_STATUS_CODE CcmMessaging 16.08.2013 12:02:31 1568 (0x0620)
Raising event:
instance of CCM_CcmHttp_Status
{
DateTime = "20130816100231.145000+000";
HostName = "srvSCCM2012.ath.int";
HRESULT = "0x87d0027e";
ProcessID = 1096;
StatusCode = 403;
ThreadID = 1568;
};
CcmMessaging 16.08.2013 12:02:31 1568 (0x0620)
Successfully sent security settings refresh message. CcmMessaging 16.08.2013 12:02:31 1568 (0x0620)
Successfully sent location services HTTP failure message. CcmMessaging 16.08.2013 12:02:31 1568 (0x0620)
Post to http://srvSCCM2012.ath.int/ccm_system_windowsauth/request failed with 0x87d00231. CcmMessaging 16.08.2013 12:02:31 1568 (0x0620)
Raising event:
instance of CCM_CcmHttp_Status
{
DateTime = "20130816101831.407000+000";
HostName = "srvSCCM2012.ath.int";
HRESULT = "0x00000000";
ProcessID = 1096;
StatusCode = 0;
ThreadID = 1568;
};
CcmMessaging 16.08.2013 12:18:31 1568 (0x0620)
Raising event:
instance of CCM_CcmHttp_Status
{
ClientID = "GUID:327B425B-9E36-481A-A0FC-05BD0654182B";
DateTime = "20130816105031.624000+000";
HostName = "srvSCCM2012.ath.int";
HRESULT = "0x00000000";
ProcessID = 1096;
StatusCode = 0;
ThreadID = 1568;
};
CcmMessaging 16.08.2013 12:50:31 1568 (0x0620)
Initializing queue 'mp_statusreceiver'... CcmMessaging 16.08.2013 12:50:32 4376 (0x1118)

Why he tried with http and not with https? Or is that ok?

Werner

Yes I restarted the client many times. I don't need more then one server, and on the descriptions it has to work with a single server installation.

Yes, I know this is an old post, but Im trying to clean them up. Did you solve this problem, if so what was the solution?

Since no one has answer this post, I recommend opening  a support case with Microsoft Customer Support Services (CSS) as they can work with you to solve this problem.