This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(28.799999999999997, 2%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJR%3C/text%3E%3C/svg%3E)
I'm seeing a lot of Event ID 31569 popping up on my newly built SCOM 2025 server (OS also server 2025)
I'm not sure what is required to fix this, I've confirm permissions and accounts are correct in all databases. SQL reporting server is the same device as the SCOM server so it should be a firewall thing. (Tho the SQL databases are on a SQL farm)
I'm unable to find other logs that shed any light on the situation, this is all very newly built as in the last two days.
Message Details:
Report deployment process failed to request management pack list from SQL RS Server. The operation will be retried.
Exception 'WebException': The underlying connection was closed: An unexpected error occurred on a receive.
One or more workflows were affected by this.
Workflow name: Microsoft.SystemCenter.DataWarehouse.Deployment.Report
Instance name: Data Warehouse Synchronization Service
Instance ID: {D2C334B6-1219-7D34-919A-CF4CB0CD5152}
Management group: [redacted]
The only other thing of regularity so may be linked if Event ID 100 Warnings with the below message. Do I need to give the SQL or Action account view rights to the mount point servers drive space? In theory the Action account should already be a local admin on the box in preparation for pushing out the clients.
Message Details:
GetOpsMgrDBPercentFreeSpace.ps1 : Exception calling "Fill" with "1" argument(s): "VIEW SERVER STATE permission
was denied on object 'server', database 'master'.
The user does not have permission to perform this action.
VIEW SERVER STATE permission was denied on object 'server', database 'master'.
The user does not have permission to perform this action.
VIEW SERVER STATE permission was denied on object 'server', database 'master'.
The user does not have permission to perform this action.
VIEW SERVER STATE permission was denied on object 'server', database 'master'.
The user does not have permission to perform this action.
VIEW SERVER STATE permission was denied on object 'server', database 'master'.
The user does not have permission to perform this action."
At line:234 char:5
$adp.Fill($dt) | out-null
~~~~~~~~~~~~~~~~~~~~~~~~~
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(249.60000000000002, 31%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDR%3C/text%3E%3C/svg%3E)
The Event ID 31569 error indicates a problem with the connection to the SQL Reporting Services server. Here are a few steps to troubleshoot and resolve the issue:
VIEW SERVER STATE permission on the SQL server.For the Event ID 100 warnings, it appears the SCOM action account lacks the VIEW SERVER STATE permission on the SQL server. Granting this permission to the action account should resolve these warnings.
If the issue persists after these steps, consider
Hi Joshua,
you’re actually looking at two separate issues here:
1) Event ID 31569 – "underlying connection was closed"
This event is raised by the Data Warehouse Synchronization Service when it tries to talk to SQL Server Reporting Services (SSRS) and fails:
Report deployment process failed to request management pack list from SQL RS Server. Exception 'WebException': The underlying connection was closed: An unexpected error occurred on a receive.
Because your Reporting role and SCOM 2025 management server are on the same box, this is almost never a "firewall on the path" problem – it’s typically:
I’d walk through these checks:
a) Verify you can reach SSRS from the SCOM server
On the SCOM 2025 management/reporting server:
If you’ve configured HTTPS in SSRS, test with the HTTPS URL instead and ensure the certificate is valid (no warnings).
If you can’t open these URLs cleanly in a browser, SCOM’s DW Sync service won’t be able to either – fix this first.
b) Check SSRS SecureConnectionLevel / HTTP vs HTTPS
The error "underlying connection was closed" is very often seen when SSRS is configured to require SSL but the client (SCOM in this case) is still trying to use HTTP, or when there’s a TLS negotiation problem. In SSRS this is controlled by the SecureConnectionLevel and URL settings in RSReportServer.config.
Typical gotchas:
What to check:
If you’ve recently switched SSRS from HTTP to HTTPS after installing SCOM Reporting, you may see 31569 until things are aligned again. In that case either:
(There are older SSRS examples where switching SecureConnectionLevel from 2 to 0 resolved the exact same "underlying connection was closed" error; in modern builds you should usually fix the SSL binding/certificate rather than permanently relaxing the setting, but it’s a useful data point when troubleshooting.
c) TLS / protocol configuration on SCOM 2025 & Server 2025
SCOM 2025 supports TLS 1.2 and (with UR1+) TLS 1.3, and it uses whatever protocols are enabled at the OS level.
On a brand-new Server 2025 build it’s common to have security baselines or tools (e.g. IIS Crypto / GPO) disabling some protocols. If, for example:
you can end up with exactly this "underlying connection was closed" behaviour.
So it’s worth verifying on the reporting/SCOM server:
d) Double-check the Data Warehouse RunAs profiles
Even though your exception is a WebException (not a SqlException), it’s still good to confirm the DW RunAs profiles are correct, because broken profiles can also generate 31569 with different error text.
In the SCOM console:
There are known cases where these profiles "lost" their associations and started causing 31557/31563/31569 DW errors.
2) Event ID 100 – GetOpsMgrDBPercentFreeSpace.ps1 and VIEW SERVER STATE
This one is not about mount points or drive permissions on the SCOM/SQL servers. The key part is:
GetOpsMgrDBPercentFreeSpace.ps1 : Exception calling "Fill" with "1" argument(s): "VIEW SERVER STATE permission was denied on object 'server', database 'master'…"
This comes from the newer DB free-space script (GetOpsMgrDBPercentFreeSpace.ps1) that was introduced in recent SCOM update rollups. That script now requires additional SQL instance-level permissions for the account that runs it. This behaviour is documented for SCOM 2019/2022 URs and carries forward into 2025.
By default, this workflow runs under the Management Server Action Account (unless you’ve customized the RunAs profile).
What you should do
On the SQL instance hosting the OperationsManager database, grant the Management Server Action Account (or whichever login is used) these instance-level permissions:
Example T-SQL (adjust the login name for your environment):
USE [master];
GRANT VIEW SERVER STATE TO [DOMAIN\SCOM_MSAA];
GRANT VIEW ANY DEFINITION TO [DOMAIN\SCOM_MSAA];
If your OpsDB is in an AlwaysOn AG, repeat this on all replicas hosting the OperationsManager DB.
Once these permissions are in place, the Event ID 100 warnings for GetOpsMgrDBPercentFreeSpace.ps1 should stop. No special "view rights to mount point drives" are required beyond your normal OS permissions.
I hope I was able to help
Best Regards
Stoyan Chalakov
"If my response was useful, please consider marking it as the answer. It keeps the forum clean, structured, and more helpful for everyone. Thank you for supporting the community."
Hi Joshua,
you’re actually looking at two separate issues here:
This event is raised by the Data Warehouse Synchronization Service when it tries to talk to SQL Server Reporting Services (SSRS) and fails:
Report deployment process failed to request management pack list from SQL RS Server.
Exception 'WebException': The underlying connection was closed: An unexpected error occurred on a receive.
Because your Reporting role and SCOM 2025 management server are on the same box, this is almost never a "firewall on the path" problem – it’s typically:
I’d walk through these checks:
a) Verify you can reach SSRS from the SCOM server
On the SCOM 2025 management/reporting server:
If you’ve configured HTTPS in SSRS, test with the HTTPS URL instead and ensure the certificate is valid (no warnings).
If you can’t open these URLs cleanly in a browser, SCOM’s DW Sync service won’t be able to either – fix this first.
b) Check SSRS SecureConnectionLevel / HTTP vs HTTPS
The error "underlying connection was closed" is very often seen when SSRS is configured to require SSL but the client (SCOM in this case) is still trying to use HTTP, or when there’s a TLS negotiation problem. In SSRS this is controlled by the SecureConnectionLevel and URL settings in RSReportServer.config.
Typical gotchas:
What to check:
If you’ve recently switched SSRS from HTTP to HTTPS after installing SCOM Reporting, you may see 31569 until things are aligned again. In that case either:
(There are older SSRS examples where switching SecureConnectionLevel from 2 to 0 resolved the exact same "underlying connection was closed" error; in modern builds you should usually fix the SSL binding/certificate rather than permanently relaxing the setting, but it’s a useful data point when troubleshooting.
c) TLS / protocol configuration on SCOM 2025 & Server 2025
SCOM 2025 supports TLS 1.2 and (with UR1+) TLS 1.3, and it uses whatever protocols are enabled at the OS level.
On a brand-new Server 2025 build it’s common to have security baselines or tools (e.g. IIS Crypto / GPO) disabling some protocols. If, for example:
you can end up with exactly this "underlying connection was closed" behaviour.
So it’s worth verifying on the reporting/SCOM server:
d) Double-check the Data Warehouse RunAs profiles
Even though your exception is a WebException (not a SqlException), it’s still good to confirm the DW RunAs profiles are correct, because broken profiles can also generate 31569 with different error text.
In the SCOM console:
There are known cases where these profiles "lost" their associations and started causing 31557/31563/31569 DW errors.
This one is not about mount points or drive permissions on the SCOM/SQL servers. The key part is:
GetOpsMgrDBPercentFreeSpace.ps1 : Exception calling "Fill" with "1" argument(s): "VIEW SERVER STATE permission was denied on object 'server', database 'master'…"
This comes from the newer DB free-space script (GetOpsMgrDBPercentFreeSpace.ps1) that was introduced in recent SCOM update rollups. That script now requires additional SQL instance-level permissions for the account that runs it. This behaviour is documented for SCOM 2019/2022 URs and carries forward into 2025.
By default, this workflow runs under the Management Server Action Account (unless you’ve customized the RunAs profile).
What you should do
On the SQL instance hosting the OperationsManager database, grant the Management Server Action Account (or whichever login is used) these instance-level permissions:
Example T-SQL (adjust the login name for your environment):
USE [master];
GRANT VIEW SERVER STATE TO [DOMAIN\SCOM_MSAA];
GRANT VIEW ANY DEFINITION TO [DOMAIN\SCOM_MSAA];
If your OpsDB is in an AlwaysOn AG, repeat this on all replicas hosting the OperationsManager DB.
Once these permissions are in place, the Event ID 100 warnings for GetOpsMgrDBPercentFreeSpace.ps1 should stop. No special "view rights to mount point drives" are required beyond your normal OS permissions.
I hope I was able to help
Best Regards
Stoyan Chalakov
"If my response was useful, please consider marking it as the answer. It keeps the forum clean, structured, and more helpful for everyone. Thank you for supporting the community."