Link to home
Start Free TrialLog in
Avatar of jct_777
jct_777Flag for Kuwait

asked on

Sccm2012 SCEP

Dear All,

I configured sccm 2012 Endpoint Protection in our organisation. It got installed in all the client computers. But till now its not updating. Clients they don't have internet connection.

I configured Antimalware policy & also ADR. shared one folder . This shared folder is getting the latest updates from the microsoft site. But its not getting pushed to client computers. this SCEP i configured two weeks before but still i am unable to push updates to clients.

Please help.

JCT
Avatar of merowinger
merowinger
Flag of Germany image

Have you enabled Software Updates, etc.
 Are normal Updates working?
Have you advertised it to the Clients?
Have you initated a Software Scan and Software Deployment Eval Cycle" on a specific machine?
Do you see the Updates downloading into the Folder?
Rightclick a Client and check the deployments, it a Definition Updates is listed there.
Check out the EndpointProtection.log on the Clients
Avatar of jct_777

ASKER

Hi,

Software updates are getting downloaded & from there i am deploying it to collections. But when i check client computers there is no updates installed.

For Endpoint protection the updates are getting downloaded to that particular folder & also deploying it to some collections. But in client computers there is no scep updates installed.

Attached is the screen shot of one of the clients

Please help.

JCT
Client-Deployments.jpg
Why are there so many Definition Updates? If you go to your Updates in Software Library, are there any Clients reporting the Definition Updates as required?
Avatar of jct_777

ASKER

Hi Merowinger,

Thanks for the help that you are providing . I am totally new to this application. Somehow configured the enpoint protection. But clients are unable to update.

Please can you tell me where i went wrong. For the last three weeks clients are not updating.

According to your query i have attached the screen shot.

waiting for your reply.

JCT
Endpoint-.jpg
Can you please check the WindowsUpdate.log file on the Clients (C:\windows\). Please post it here
Avatar of jct_777

ASKER

Hi,

Is it updates deployment.log  or the one you mentioned WindowsUpdate.log. I serached in the client computer its not showing Windows Update.log file.

UpdatesDeployment.log file attached.

JCT
UpdatesDeployment.log
it's located under C:\Windows\windowsupdate.log
Avatar of jct_777

ASKER

Hi ,

The required file has been attached.

Waiting for your reply.

JCT
WindowsUpdate.log
Can you please execute a Software Update Scan Cycle on some Clients and run a summarization on the "All Software Updates" node in the console afterwards
Avatar of jct_777

ASKER

Hi ,

Yes i did. what to do next.

Jct
Are some of the non-expired FEP Definition Updates now shown as requried?
Avatar of jct_777

ASKER

Hi,

Its showing. I have taken a snapshot & it has been attached.



Regards,

JCT
FEP-Updates-Details.jpg
The green definition update is not listed as deployed, are you sure you've deployed it.
Check your update group, update deployments and the update package
Avatar of jct_777

ASKER

Hi ,

I have also deleted the old ADR & created a new one. But its showing some error code now.

Also can we configure like this ,client computers which have internet they will get updates from internet & others which don't have internet connection they will get updates from the sccm 2012 server. Is it possible

Attached is the ADR screen which i created newely & showing some error code.

Regards,

JCT
ADR-Error.jpg
Avatar of jct_777

ASKER

Hi,

I deleted everything & re-created. I just configured ADR & Antimalware policy . Deployed Antimalware policy to ALL Systems collections.

or can you please guide me from beginning i will unistall the FEP & Install it again if you don't mind. It will be a great help to me.

Attached is the screen shot for antimalware policy

Regards,

JCT
Antimalware-Policy.jpg
Check the Log ruleengine.log for Errors regarding the ADR.
With the Antimalware Policies you can define the order which Clients execute when searching for Updates.
Check out this.
http://blogs.msdn.com/b/scstr/archive/2012/05/31/how-to-scep-amp-settings-amp-automatic-deploymnet-rule.aspx
Avatar of jct_777

ASKER

Hi ,

I have attached the file for ruleengine.logs.

Please guide the link that you provided above is little bit confusing. I referred that link previously but was confused.

jct
ruleengine.log
ASKER CERTIFIED SOLUTION
Avatar of merowinger
merowinger
Flag of Germany image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of jct_777

ASKER

Hi,

Will update you tomorrow regarding the FEP.

Regards,

JCT