Jamf Nation Community

gabriel_sanna · ‎01-28-2016

Hello, all!

I'm getting the following error in the policy logs when computers try to download packages from an https distribution point.

Executing Policy Install MyPackage Downloading https://foo.bar/CasperShare/Packages/MyPackage.pkg.zip... The network connection was interrupted while downloading the package from https://foo.bar/CasperShare/Packages/MyPackage.pkg.zip. Attempting to reconnect... Downloading https://foo.bar/CasperShare/Packages/MyPackage.pkg.zip... Error: MyPackage.pkg.zip is not available on the HTTP server.

If you navigate to the URL in question in a browser, the package downloads successfully. I thought our self-signed cert might be an issue, but the same error occurs when I disabled https and switch the distribution point to just an http server. I've also tried disabling client authentication, adding MIME types to the share's .htaccess file, and confirming that the permissions on the file are correct (755).

Note that the distribution point works fine as an SMB share. Has anyone else encountered this problem?

Edit to mention that this server is running RHEL 6 and Apache.

anders_djerf · ‎02-16-2016

I had this same issue when I first set up a HTTPS distribution point (RHEL7/Apache, JSS 9.82). Changing from a self-signed certificate to a 3rd party cert fixed the issue for me.

View solution in original post

tim_c · ‎01-28-2016

@gabriel_sanna

I have experienced the precise issue. Never really got down to a solution. Thought it was a server app version issue but tried different iterations with the same issue. Went through cert checks also with the same results. I pretty much had to look at the poster because it's exactly what we're experiencing...like I have a doppelganger out there typing my exact thoughts and experiences.

Essentially, SMB is what's being used for us now since it works better for our org to use VPN when they are remote and SMB over VPN works with packages via the SS app. Otherwise, it's this glitch is a major headache that generates some unwanted Tier 0 action for remote and traveling end users...which is why we like SS in the first place :-/

Thanks for the post @gabriel_sanna. This thing has been a pain leaving me concerned that it'll break fully at some point and I've had a couple of cases open with not definitive solution. Eventually closed the cases because we are building a new JSS. Hopefully it doesn't persist given that the new JSS is running Casper v9.82

FastGM3 · ‎02-03-2016

I'm having the exact same issue! I can manually mount and download my packages via SMB and I can go directly to the secure URL and download the file. Both ways I use the AD service accounts successfully. However, every time I use self service, I get an error on the client "Can't Install Package" and on the JSS the log is,

Executing Policy Install MyPackage
Downloading https://foo.bar/CasperShare/Packages/MyPackage.pkg.zip...
The network connection was interrupted while downloading the package from https://foo.bar/CasperShare/Packages/MyPackage.pkg.zip. Attempting to reconnect...
Downloading https://foo.bar/CasperShare/Packages/MyPackage.pkg.zip...
Error: MyPackage.pkg.zip is not available on the HTTP server.

Running Windows 2012

russeller · ‎02-10-2016

Same as @FastGM3 I'm running 2012R2 with IIS and getting the same results randomly with clients. I'm using HTTPS as well. I haven't tried just using HTTP yet now that I think about it.

Considering building a simple Ubuntu Distro VM with Apache or Nginx to see if I get the same results with HTTP(S) downloads.

anders_djerf · ‎02-16-2016

I had this same issue when I first set up a HTTPS distribution point (RHEL7/Apache, JSS 9.82). Changing from a self-signed certificate to a 3rd party cert fixed the issue for me.

gabriel_sanna · ‎02-22-2016

Yup, signed certificate fixed it right up. I'm not sure why it still wouldn't work when I disabled SSL entirely, but now that it's fixed I'm just not going to worry too much about it. Thanks!

lebaowth · ‎07-02-2016

Hi - totally newb here

I'm experiencing the same error fresh off our JumpStart - When you mention the self signed cert, are you referring to the certificate within OS X Server app or are we talking about a cert that was installed into the JSS itself?

Would you mind talking to me like I'm a four year old and explaining how I might go about procuring the right cert and where to put it when I have it?

Thanks for your patience

bentoms · ‎07-04-2016

@lebaowth If you copy the URL in the error into Safari, does the item download?

lebaowth · ‎07-04-2016

@bentoms

it did for a couple of days, and now it never seems to resolve (from the outside)

internally, YES... I can't quite understand why it won't resolve from the outside

initially, internally, I'll get the certificate request when resolving - from the outside, it never seems to get to the point where it asks me for the cert

Bernard_Huang · ‎07-04-2016

Hmmmm.... I'm getting this same error within our Self Service. But it is happening to 1 policy (application) only. The rest of the policies are working fine.

I have this Tuxera.mpkg file within Casper JSS. When trying to install it via Self Service, it gives the error "The network connection was interrupted while downloading the package"

I then tried other policies within the same Casper instance. They were able to download and install successfully.

So it's affecting just one software. Does it matter that it is a .mpkg instead of a .dmg or *.pkg?

We are using JSS 9.81, btw.

bentoms · ‎07-13-2016

@lebaowth sounds like there might not be an external DNS entry for the DP.

@Bernard.Huang it could be permissions on that file.. Also, have you migrated your packages & scripts?

The JSS should .zip the mpkg, which might help.

Jamf Nation Community

Error downloading package from https distribution point