Check DNS is correctly resolved on the server and for the machine
Certificate valid, not expired, revocation lists not blocked by firewall or proxy
Private key of the certificate is exportable
The checked certificate must be in the LocalMachine\My store
Download powershell script to run:
View file name CheckExportablePrivateKeys.ps1 Execute it with Administrator rights:
Code Block language powershell powershell -ExecutionPolicy Bypass -File .\CheckExportablePrivateKeys.ps1
Windows update urls are not blocked by firewall or proxy
All ports are open from agent to server and to admin to server and not blocked by proxy
...