Solved

SCCM 2012 SP1 Adding Endpoint Protection on Different Subnet

Posted on 2014-02-06
8
405 Views
Last Modified: 2014-03-18
We have a SCCM 2012 server pushing out endpoint protection to all our clients on our local IP subnet/Domain  working no problem. We have a separate Web and SQL at a remote site that is NOT on our Domain and has a totally different subnet. Is there a way for us to manage the SQL and WEB server with Endpoint Protection without having them attached on our Domain?

Thanks
0
Comment
Question by:donebert
  • 5
  • 3
8 Comments
 
LVL 9

Accepted Solution

by:
Zenvenky earned 500 total points
ID: 39839606
Can you ping SQL and WEB server from SCCM2012 server?
Are you able to ping SCCM2012 server from SQL or WEB server?

This shall be resolved first before we think of Endpoint. If it's not pingable then create conditional forwarders or make site-to-site connection in VPN if you have any. Once it is done add SQL and WEB servers AD/DNS then you can install Endpoint.
0
 
LVL 1

Author Comment

by:donebert
ID: 39839791
They are able to ping each other and the servers were added to AD/DNS. I then copied the Client folder from the sccm server onto the servers and ran it. From looking at the logs it (Failed to get site version from AD with error 0x80004005) see attached doc.
CCMSETUP-LOG-ERROR.docx
0
 
LVL 9

Expert Comment

by:Zenvenky
ID: 39840267
error 0x80004005 means that there is a permissions issue. User account  which you've used is not authorized. In short Access Denied.
0
Ransomware-A Revenue Bonanza for Service Providers

Ransomware – malware that gets on your customers’ computers, encrypts their data, and extorts a hefty ransom for the decryption keys – is a surging new threat.  The purpose of this eBook is to educate the reader about ransomware attacks.

 
LVL 1

Author Comment

by:donebert
ID: 39840294
I will check that out and report back. I won't get back until tommorow.
0
 
LVL 1

Author Comment

by:donebert
ID: 39842513
OK I verified that SCCM is trying to use our domain\administrator and those 2 servers are not on the domain and do not know what domain\administrator is, therefore does not give the rights. I don't know what I should do to resolve that?
0
 
LVL 9

Expert Comment

by:Zenvenky
ID: 39843549
Give full control to Administrator on C:\Client folder and try to setup from elevated command prompt (Run as Admin). See if it works for you.
0
 
LVL 1

Author Comment

by:donebert
ID: 39843622
I'll try it tomorrow thanks for everything sonfar
0
 
LVL 1

Author Closing Comment

by:donebert
ID: 39937865
Thanks
0

Featured Post

The Eight Noble Truths of Backup and Recovery

How can IT departments tackle the challenges of a Big Data world? This white paper provides a roadmap to success and helps companies ensure that all their data is safe and secure, no matter if it resides on-premise with physical or virtual machines or in the cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A procedure for exporting installed hotfix details of remote computers using powershell
This article outlines the process to identify and resolve account lockout in an Active Directory environment.
This tutorial will give a an overview on how to deploy remote agents in Backup Exec 2012 to new servers. Click on the Backup Exec button in the upper left corner. From here, are global settings for the application such as connecting to a remote Back…
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…

770 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question