Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

Setting up a Proxy MP in SCCM...  (SQL question too)

Posted on 2011-03-25
1
Medium Priority
?
880 Views
Last Modified: 2013-11-21
Hi All.  I just setup a secondary site w/o SQL and would like to set it as a Proxy MP and protected Distribution point.  While setting up the site was easy, some of the options seemed ambiguous to me when running the 'Add Role' wizard. Sorry for all the questions, just that the MS documentation on what to do AFTER you select 'Add Role' for a proxy MP is almost non-existent.  We are using SCCM 2007 R3 & SQL 2008 Std.

1. Setting up a ProxyMP on the new site.  Asking 'Specify the account used by management points computer account.  I selected 'Use the management points computer account.'  Correct?  Or should I use the SCCM Administrator account, which is in our Domain Admin AD Group?

2,  Should I check 'Allow only Site server initiated data transfers from the site system?'

3.  Should I check 'Allow devices to use this management point.'  Is this for client pcs, or does it mean mobile phones, etc.

4, 'Specify the account used by the management point to connect with the database.'  Default is to use the management points computer account.  Or should I use the SCCM Administrator account for this?

5,  Perhaps most important, how do I add the new secondary sites computer into SQL for proper permissions?  I did not setup SQL on the primary site this one will connect to, and not a 'SQL guy' in any way.  Is there a (relatively) easy guide that will walk me through doing this so the new secondary site  ProxyMP can properly connect to the parent SQL db?
0
Comment
Question by:NBquery
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
1 Comment
 
LVL 31

Accepted Solution

by:
merowinger earned 2000 total points
ID: 35240307
1. Just cannot remember that option...Screenshot?
2. This option defines that only the site server can initate a connection to the mp and then gathers the information, but this makes only sense for security reasons, so that the mp cannot "attack" the site server
3. This option is for mobile device management points, so if there are no mobile devices, then ignore the option
4. Never take a domain user account like an administrator for such cases. The computer account password is unknown, so this is more secure.
The only security problem which exists with the computer account is that if the sql server would be hacked, then the management point can also be hacked easily. If you not want to use the computer account then you should create a service account which has just "domain user" rights in the domain and the specific permissons on the site server database. Here is some further information to this: http://technet.microsoft.com/en-us/library/bb632370.aspx
5. http://technet.microsoft.com/en-us/library/bb694113.aspx

Also check out this article:
http://technet.microsoft.com/en-us/library/bb680595.aspx
0

Featured Post

Fill in the form and get your FREE NFR key NOW!

Veeam® is happy to provide a FREE NFR server license to certified engineers, trainers, and bloggers.  It allows for the non‑production use of Veeam Agent for Microsoft Windows. This license is valid for five workstations and two servers.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Windocks is an independent port of Docker's open source to Windows.   This article introduces the use of SQL Server in containers, with integrated support of SQL Server database cloning.
When trying to connect from SSMS v17.x to a SQL Server Integration Services 2016 instance or previous version, you get the error “Connecting to the Integration Services service on the computer failed with the following error: 'The specified service …
Familiarize people with the process of retrieving data from SQL Server using an Access pass-thru query. Microsoft Access is a very powerful client/server development tool. One of the ways that you can retrieve data from a SQL Server is by using a pa…
Using examples as well as descriptions, and references to Books Online, show the documentation available for date manipulation functions and by using a select few of these functions, show how date based data can be manipulated with these functions.

721 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question