Solved

SCCM Client Installation Failed

Posted on 2009-05-15
6
2,136 Views
Last Modified: 2013-11-21
I have installed SCCM 2007 in out environmnet. SCCM discovered all resourses in the network. I pushed client via Client Push. After some time it shows me iin SCCM console that on some machines client couldnt be installed. I did some reasearch and I came to know that firewall is protecting the installation. I turned of windows firewall on one machine to test and after that client installed perfactly.
As per the company's policy we cannot turn of firewall on some machines.
So if someone can tell me which specifically which port's expection I should add to install client and how can i push that setting thru GPO to all clients.
0
Comment
Question by:didba
  • 3
  • 3
6 Comments
 
LVL 8

Assisted Solution

by:U_Mansson
U_Mansson earned 250 total points
ID: 24411534
Hi

you need to create exceptions for WMI and File/Print.

http://technet.microsoft.com/en-ca/library/bb680737.aspx

Another option is to install the client with GPO instead.

Regards

Ulf M.
0
 

Author Comment

by:didba
ID: 24411754
Thank you for your reply!
 File and Printer Sharing exception already there in firewall setting but I am not sure how to add WMI to that list. What is the exe for WMI or which ports I need to add in exceptions. Thanks in advance.
0
 
LVL 8

Assisted Solution

by:U_Mansson
U_Mansson earned 250 total points
ID: 24411814
I think you have to use the WMI exception in the firewall.

On a single Vista machine:
1.In the Control Panel, click Security and then click Windows Firewall.
2.Click Change Settings and then click the Exceptions tab.
3.In the Exceptions window, select the check box for Windows Management Instrumentation (WMI) to enable WMI traffic through the firewall

I don't have access to my labserver right now so I can't check the settings in the GPO.
0
Use Case: Protecting a Hybrid Cloud Infrastructure

Microsoft Azure is rapidly becoming the norm in dynamic IT environments. This document describes the challenges that organizations face when protecting data in a hybrid cloud IT environment and presents a use case to demonstrate how Acronis Backup protects all data.

 

Author Comment

by:didba
ID: 24412466
We have XP SP3 clients.

In XP I cannot see WMI in exceptions list in windows firewall setting.
I google it to check which ports WMI uses but it looks like WMI use random port for communication.
So how to add WMI as a program to that list.
Thanks.
0
 

Author Comment

by:didba
ID: 24425813
I am still stuck on this issue. Please help.
0
 
LVL 8

Accepted Solution

by:
U_Mansson earned 250 total points
ID: 24428960

WMI uses TCP ports 135 and 445 as well as dynamicallyassigned ports above 1024.
To handle this, you need to enable "Allow remote administration exception" for the firewall.

Administrative Templates\Network\Network Connections\Windows Firewall\Domain Profile
Windows Firewall: Allow remote administration exception
0

Featured Post

Courses: Start Training Online With Pros, Today

Brush up on the basics or master the advanced techniques required to earn essential industry certifications, with Courses. Enroll in a course and start learning today. Training topics range from Android App Dev to the Xen Virtualization Platform.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

##the calculator has been updated to version 1.6 please download the use the updated version## Hi there, After the previous post of the original version of the calculator here : http://www.experts-exchange.com/articles/OS/Microsoft_Operatin…
Some time ago I faced the need to use a uniform folder structure that spanned across numerous sites of an enterprise to be used as a common repository for the Software packages of the Configuration Manager 2007 infrastructure. Because the procedu…
Windows 10 is mostly good. However the one thing that annoys me is how many clicks you have to do to dial a VPN connection. You have to go to settings from the start menu, (2 clicks), Network and Internet (1 click), Click VPN (another click) then fi…
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…

785 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question