Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 451
  • Last Modified:

SCCM 2012 SP1 Adding Endpoint Protection on Different Subnet

We have a SCCM 2012 server pushing out endpoint protection to all our clients on our local IP subnet/Domain  working no problem. We have a separate Web and SQL at a remote site that is NOT on our Domain and has a totally different subnet. Is there a way for us to manage the SQL and WEB server with Endpoint Protection without having them attached on our Domain?

Thanks
0
donebert
Asked:
donebert
  • 5
  • 3
1 Solution
 
ZenVenkyArchitectCommented:
Can you ping SQL and WEB server from SCCM2012 server?
Are you able to ping SCCM2012 server from SQL or WEB server?

This shall be resolved first before we think of Endpoint. If it's not pingable then create conditional forwarders or make site-to-site connection in VPN if you have any. Once it is done add SQL and WEB servers AD/DNS then you can install Endpoint.
0
 
donebertAuthor Commented:
They are able to ping each other and the servers were added to AD/DNS. I then copied the Client folder from the sccm server onto the servers and ran it. From looking at the logs it (Failed to get site version from AD with error 0x80004005) see attached doc.
CCMSETUP-LOG-ERROR.docx
0
 
ZenVenkyArchitectCommented:
error 0x80004005 means that there is a permissions issue. User account  which you've used is not authorized. In short Access Denied.
0
Simplify Active Directory Administration

Administration of Active Directory does not have to be hard.  Too often what should be a simple task is made more difficult than it needs to be.The solution?  Hyena from SystemTools Software.  With ease-of-use as well as powerful importing and bulk updating capabilities.

 
donebertAuthor Commented:
I will check that out and report back. I won't get back until tommorow.
0
 
donebertAuthor Commented:
OK I verified that SCCM is trying to use our domain\administrator and those 2 servers are not on the domain and do not know what domain\administrator is, therefore does not give the rights. I don't know what I should do to resolve that?
0
 
ZenVenkyArchitectCommented:
Give full control to Administrator on C:\Client folder and try to setup from elevated command prompt (Run as Admin). See if it works for you.
0
 
donebertAuthor Commented:
I'll try it tomorrow thanks for everything sonfar
0
 
donebertAuthor Commented:
Thanks
0

Featured Post

Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

  • 5
  • 3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now