Things to check then.  Can you advise on the below?

Is this an inplace upgrade?

Do the frameworksettings.xml files on your working and non-working clients match?

Can you enable IIS logging on your SEE Management Server, attempt a check in, and let us know what you see?

Plus a few basics too like, do the working and non-working machines resolve the servername to the same IP address, can you telnet the SEE Management server on the configured comms port, have you enabled HTTPS for comms, etc?

Sorry I never saw your post.  I've been working with Symantec support and am no closer to the reason.

No one ever advised a comparison of the frameworksettings.xml files but they're all the same on the "working" and "problem" clients--the exact same client msi has been used on them all.

IIS logging on the SEE server shows no issue...all clients have a 200 response code.

I finally figured out how to get trace logging activated since every registry change I was advised to make would not create any trace logs.  I know get trace logs but am finding it difficult to know which client is associated with the associated id in the log file.  I've sent them onto Symantec support for their review.  It sure would be easier if those traces id'd either the system name or the IP number in use.  I dont' see any correlation between id in the log file with the system id in the database computers table.

Name resolution is not an issue for any client.  I've tried http and https for the client to server communications and there doesn't seem to be any difference in behavior between either one.

I'm also trying to figure out why some clients are plunked into the SEE Unassigned category rather than their system OU even though AD has no problem identifying their proper system OU.  But SEE does--for some clients.  I'm tempted to edit the Computers table records directoy to reference the proper OU but that wouldn't solve the underlying problem there.

To review then...

On the IIS side, when you click the "Check In" button on a problem client, you see a corresponding log entry in the IIS logs for that client's IP address, and appears to be successful, correct?

You didn't confirm, but I'm assuming this was an inplace server upgrade using the same database; what version did you upgrade from?

On a problem client, if there are errors communicating, then the EAFrmCliComm log file under the Techlogs folder inside the software installation folder should be updated.  Can you post this please?

Finally, the assignment of SEE clients to their OUs in the SEE Manager, is reliant upon the Directory Sync being up and running.  Check your directory sync settings by opening the SEEMS Configuration Manager on your server and make sure it's all running and syncing.

On a final note, all of the above (client check-ins, directory syncing, etc) is dependent on the database being fully operational.  Can you confirm the health of the database please (maintenance plans, backup strategy, available space, etc), and if has been moved as part of your upgrade (plus details please)?