You noticed that after you installed the package service on your Site Server, it only provides UNC or HTTP codebases, even when selectomg "Publish HTTPS codebase" (under Settings>All Settings>Notification Server>Site Server Settings>Package Service>Package Service Settings).
From the agent logs you can see that virtual directories are being created, this means all required IIS features are installed.
SMP 8.x
IIS for some reason didn't bind to port 443 on the assigned certificate even though IIS shows a certificate is bound to it.
The HTTPS codebases also depend aon bindings in the IIS. If those are not OK, the HTTPS is not configured and not showing up in the UI.
The bindings do exist, but not only in IIS, they are also configured in Windows level (visible by “netsh http show sslcert” cmd command), and if some app is changing the Windows binding, the IIS does not know anything about it and could show old values in their own UI. They have a complicated relationships. Also, if the “Force” flag is not set in the Package Server (PS) policy, it could happen that the Agent (on the PS) will not (re)create/update the binding, if it decides that binding is not our own.
One thing to consider is that the Package Service on the SMP is not recommended since the SMP by nature is a package server and is already providing codebases to any client or package server that needs those packages.
Check the following KB Articles first, just in case the server is missing important IIS feature settings:
"Package Server only publishes UNC codebases even when IIS is installed", if Required IIS Features are missing (KB 164960)
In this particular case, we had to do the following:
Once that was done, go to the Agent UI>Package Server tab>Refresh All Packages and now HTTPS codebases are generated.
If the suggestion above works but after rebooting the package server the error "Package Server could not access own Web Site using HTTPS" comes back again then please try the following:
On the SMP Console, under Settings>Notification Server>Site Server Settings, find the affected Package Server under "Site Servers" and click on "Override the global settings by custom settings" for the "Certificates Rollout" section (depending on the SMP version, it may be called "Web Configuration" section).
Make sure to:
After the package server gets the new configuration, restart the Altiris agent service. Check if the error is still present.
Note: In another version, it may look like this: