jct_777
asked on
Sccm2012 SCEP
Dear All,
I configured sccm 2012 Endpoint Protection in our organisation. It got installed in all the client computers. But till now its not updating. Clients they don't have internet connection.
I configured Antimalware policy & also ADR. shared one folder . This shared folder is getting the latest updates from the microsoft site. But its not getting pushed to client computers. this SCEP i configured two weeks before but still i am unable to push updates to clients.
Please help.
JCT
I configured sccm 2012 Endpoint Protection in our organisation. It got installed in all the client computers. But till now its not updating. Clients they don't have internet connection.
I configured Antimalware policy & also ADR. shared one folder . This shared folder is getting the latest updates from the microsoft site. But its not getting pushed to client computers. this SCEP i configured two weeks before but still i am unable to push updates to clients.
Please help.
JCT
ASKER
Hi,
Software updates are getting downloaded & from there i am deploying it to collections. But when i check client computers there is no updates installed.
For Endpoint protection the updates are getting downloaded to that particular folder & also deploying it to some collections. But in client computers there is no scep updates installed.
Attached is the screen shot of one of the clients
Please help.
JCT
Client-Deployments.jpg
Software updates are getting downloaded & from there i am deploying it to collections. But when i check client computers there is no updates installed.
For Endpoint protection the updates are getting downloaded to that particular folder & also deploying it to some collections. But in client computers there is no scep updates installed.
Attached is the screen shot of one of the clients
Please help.
JCT
Client-Deployments.jpg
Why are there so many Definition Updates? If you go to your Updates in Software Library, are there any Clients reporting the Definition Updates as required?
ASKER
Hi Merowinger,
Thanks for the help that you are providing . I am totally new to this application. Somehow configured the enpoint protection. But clients are unable to update.
Please can you tell me where i went wrong. For the last three weeks clients are not updating.
According to your query i have attached the screen shot.
waiting for your reply.
JCT
Endpoint-.jpg
Thanks for the help that you are providing . I am totally new to this application. Somehow configured the enpoint protection. But clients are unable to update.
Please can you tell me where i went wrong. For the last three weeks clients are not updating.
According to your query i have attached the screen shot.
waiting for your reply.
JCT
Endpoint-.jpg
Can you please check the WindowsUpdate.log file on the Clients (C:\windows\). Please post it here
ASKER
Hi,
Is it updates deployment.log or the one you mentioned WindowsUpdate.log. I serached in the client computer its not showing Windows Update.log file.
UpdatesDeployment.log file attached.
JCT
UpdatesDeployment.log
Is it updates deployment.log or the one you mentioned WindowsUpdate.log. I serached in the client computer its not showing Windows Update.log file.
UpdatesDeployment.log file attached.
JCT
UpdatesDeployment.log
it's located under C:\Windows\windowsupdate.l og
ASKER
Can you please execute a Software Update Scan Cycle on some Clients and run a summarization on the "All Software Updates" node in the console afterwards
ASKER
Hi ,
Yes i did. what to do next.
Jct
Yes i did. what to do next.
Jct
Are some of the non-expired FEP Definition Updates now shown as requried?
ASKER
Hi,
Its showing. I have taken a snapshot & it has been attached.
Regards,
JCT
FEP-Updates-Details.jpg
Its showing. I have taken a snapshot & it has been attached.
Regards,
JCT
FEP-Updates-Details.jpg
The green definition update is not listed as deployed, are you sure you've deployed it.
Check your update group, update deployments and the update package
Check your update group, update deployments and the update package
ASKER
Hi ,
I have also deleted the old ADR & created a new one. But its showing some error code now.
Also can we configure like this ,client computers which have internet they will get updates from internet & others which don't have internet connection they will get updates from the sccm 2012 server. Is it possible
Attached is the ADR screen which i created newely & showing some error code.
Regards,
JCT
ADR-Error.jpg
I have also deleted the old ADR & created a new one. But its showing some error code now.
Also can we configure like this ,client computers which have internet they will get updates from internet & others which don't have internet connection they will get updates from the sccm 2012 server. Is it possible
Attached is the ADR screen which i created newely & showing some error code.
Regards,
JCT
ADR-Error.jpg
ASKER
Hi,
I deleted everything & re-created. I just configured ADR & Antimalware policy . Deployed Antimalware policy to ALL Systems collections.
or can you please guide me from beginning i will unistall the FEP & Install it again if you don't mind. It will be a great help to me.
Attached is the screen shot for antimalware policy
Regards,
JCT
Antimalware-Policy.jpg
I deleted everything & re-created. I just configured ADR & Antimalware policy . Deployed Antimalware policy to ALL Systems collections.
or can you please guide me from beginning i will unistall the FEP & Install it again if you don't mind. It will be a great help to me.
Attached is the screen shot for antimalware policy
Regards,
JCT
Antimalware-Policy.jpg
Check the Log ruleengine.log for Errors regarding the ADR.
With the Antimalware Policies you can define the order which Clients execute when searching for Updates.
Check out this.
http://blogs.msdn.com/b/scstr/archive/2012/05/31/how-to-scep-amp-settings-amp-automatic-deploymnet-rule.aspx
With the Antimalware Policies you can define the order which Clients execute when searching for Updates.
Check out this.
http://blogs.msdn.com/b/scstr/archive/2012/05/31/how-to-scep-amp-settings-amp-automatic-deploymnet-rule.aspx
ASKER
Hi ,
I have attached the file for ruleengine.logs.
Please guide the link that you provided above is little bit confusing. I referred that link previously but was confused.
jct
ruleengine.log
I have attached the file for ruleengine.logs.
Please guide the link that you provided above is little bit confusing. I referred that link previously but was confused.
jct
ruleengine.log
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Hi,
Will update you tomorrow regarding the FEP.
Regards,
JCT
Will update you tomorrow regarding the FEP.
Regards,
JCT
Are normal Updates working?
Have you advertised it to the Clients?
Have you initated a Software Scan and Software Deployment Eval Cycle" on a specific machine?
Do you see the Updates downloading into the Folder?
Rightclick a Client and check the deployments, it a Definition Updates is listed there.
Check out the EndpointProtection.log on the Clients