?
Solved

SCCM 2012 SP1 Adding Endpoint Protection on Different Subnet

Posted on 2014-02-06
8
Medium Priority
?
427 Views
Last Modified: 2014-03-18
We have a SCCM 2012 server pushing out endpoint protection to all our clients on our local IP subnet/Domain  working no problem. We have a separate Web and SQL at a remote site that is NOT on our Domain and has a totally different subnet. Is there a way for us to manage the SQL and WEB server with Endpoint Protection without having them attached on our Domain?

Thanks
0
Comment
Question by:donebert
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 5
  • 3
8 Comments
 
LVL 9

Accepted Solution

by:
Zenvenky earned 1500 total points
ID: 39839606
Can you ping SQL and WEB server from SCCM2012 server?
Are you able to ping SCCM2012 server from SQL or WEB server?

This shall be resolved first before we think of Endpoint. If it's not pingable then create conditional forwarders or make site-to-site connection in VPN if you have any. Once it is done add SQL and WEB servers AD/DNS then you can install Endpoint.
0
 
LVL 1

Author Comment

by:donebert
ID: 39839791
They are able to ping each other and the servers were added to AD/DNS. I then copied the Client folder from the sccm server onto the servers and ran it. From looking at the logs it (Failed to get site version from AD with error 0x80004005) see attached doc.
CCMSETUP-LOG-ERROR.docx
0
 
LVL 9

Expert Comment

by:Zenvenky
ID: 39840267
error 0x80004005 means that there is a permissions issue. User account  which you've used is not authorized. In short Access Denied.
0
VIDEO: THE CONCERTO CLOUD FOR HEALTHCARE

Modern healthcare requires a modern cloud. View this brief video to understand how the Concerto Cloud for Healthcare can help your organization.

 
LVL 1

Author Comment

by:donebert
ID: 39840294
I will check that out and report back. I won't get back until tommorow.
0
 
LVL 1

Author Comment

by:donebert
ID: 39842513
OK I verified that SCCM is trying to use our domain\administrator and those 2 servers are not on the domain and do not know what domain\administrator is, therefore does not give the rights. I don't know what I should do to resolve that?
0
 
LVL 9

Expert Comment

by:Zenvenky
ID: 39843549
Give full control to Administrator on C:\Client folder and try to setup from elevated command prompt (Run as Admin). See if it works for you.
0
 
LVL 1

Author Comment

by:donebert
ID: 39843622
I'll try it tomorrow thanks for everything sonfar
0
 
LVL 1

Author Closing Comment

by:donebert
ID: 39937865
Thanks
0

Featured Post

Does Powershell have you tied up in knots?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Recently, Microsoft released a best-practice guide for securing Active Directory. It's a whopping 300+ pages long. Those of us tasked with securing our company’s databases and systems would, ideally, have time to devote to learning the ins and outs…
For anyone that has accidentally used newSID with Server 2008 R2 (like I did) and hasn't been able to get the server running again because you were unlucky (as I was) and had no backups - I was able to get things working by doing a Registry Hive rec…
This tutorial will walk an individual through locating and launching the BEUtility application to properly change the service account username and\or password in situation where it may be necessary or where the password has been inadvertently change…
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …
Suggested Courses
Course of the Month13 days, 8 hours left to enroll

801 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question