[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 307
  • Last Modified:

Sccm2012 SCEP

Dear All,

I configured sccm 2012 Endpoint Protection in our organisation. It got installed in all the client computers. But till now its not updating. Clients they don't have internet connection.

I configured Antimalware policy & also ADR. shared one folder . This shared folder is getting the latest updates from the microsoft site. But its not getting pushed to client computers. this SCEP i configured two weeks before but still i am unable to push updates to clients.

Please help.

JCT
0
jct_777
Asked:
jct_777
  • 10
  • 9
1 Solution
 
merowingerCommented:
Have you enabled Software Updates, etc.
 Are normal Updates working?
Have you advertised it to the Clients?
Have you initated a Software Scan and Software Deployment Eval Cycle" on a specific machine?
Do you see the Updates downloading into the Folder?
Rightclick a Client and check the deployments, it a Definition Updates is listed there.
Check out the EndpointProtection.log on the Clients
0
 
jct_777Author Commented:
Hi,

Software updates are getting downloaded & from there i am deploying it to collections. But when i check client computers there is no updates installed.

For Endpoint protection the updates are getting downloaded to that particular folder & also deploying it to some collections. But in client computers there is no scep updates installed.

Attached is the screen shot of one of the clients

Please help.

JCT
Client-Deployments.jpg
0
 
merowingerCommented:
Why are there so many Definition Updates? If you go to your Updates in Software Library, are there any Clients reporting the Definition Updates as required?
0
NEW Veeam Backup for Microsoft Office 365 1.5

With Office 365, it’s your data and your responsibility to protect it. NEW Veeam Backup for Microsoft Office 365 eliminates the risk of losing access to your Office 365 data.

 
jct_777Author Commented:
Hi Merowinger,

Thanks for the help that you are providing . I am totally new to this application. Somehow configured the enpoint protection. But clients are unable to update.

Please can you tell me where i went wrong. For the last three weeks clients are not updating.

According to your query i have attached the screen shot.

waiting for your reply.

JCT
Endpoint-.jpg
0
 
merowingerCommented:
Can you please check the WindowsUpdate.log file on the Clients (C:\windows\). Please post it here
0
 
jct_777Author Commented:
Hi,

Is it updates deployment.log  or the one you mentioned WindowsUpdate.log. I serached in the client computer its not showing Windows Update.log file.

UpdatesDeployment.log file attached.

JCT
UpdatesDeployment.log
0
 
merowingerCommented:
it's located under C:\Windows\windowsupdate.log
0
 
jct_777Author Commented:
Hi ,

The required file has been attached.

Waiting for your reply.

JCT
WindowsUpdate.log
0
 
merowingerCommented:
Can you please execute a Software Update Scan Cycle on some Clients and run a summarization on the "All Software Updates" node in the console afterwards
0
 
jct_777Author Commented:
Hi ,

Yes i did. what to do next.

Jct
0
 
merowingerCommented:
Are some of the non-expired FEP Definition Updates now shown as requried?
0
 
jct_777Author Commented:
Hi,

Its showing. I have taken a snapshot & it has been attached.



Regards,

JCT
FEP-Updates-Details.jpg
0
 
merowingerCommented:
The green definition update is not listed as deployed, are you sure you've deployed it.
Check your update group, update deployments and the update package
0
 
jct_777Author Commented:
Hi ,

I have also deleted the old ADR & created a new one. But its showing some error code now.

Also can we configure like this ,client computers which have internet they will get updates from internet & others which don't have internet connection they will get updates from the sccm 2012 server. Is it possible

Attached is the ADR screen which i created newely & showing some error code.

Regards,

JCT
ADR-Error.jpg
0
 
jct_777Author Commented:
Hi,

I deleted everything & re-created. I just configured ADR & Antimalware policy . Deployed Antimalware policy to ALL Systems collections.

or can you please guide me from beginning i will unistall the FEP & Install it again if you don't mind. It will be a great help to me.

Attached is the screen shot for antimalware policy

Regards,

JCT
Antimalware-Policy.jpg
0
 
merowingerCommented:
Check the Log ruleengine.log for Errors regarding the ADR.
With the Antimalware Policies you can define the order which Clients execute when searching for Updates.
Check out this.
http://blogs.msdn.com/b/scstr/archive/2012/05/31/how-to-scep-amp-settings-amp-automatic-deploymnet-rule.aspx
0
 
jct_777Author Commented:
Hi ,

I have attached the file for ruleengine.logs.

Please guide the link that you provided above is little bit confusing. I referred that link previously but was confused.

jct
ruleengine.log
0
 
merowingerCommented:
Could you please first check this here. It seems that the Server cannot download the Updates successfully.
http://777notes.wordpress.com/2012/09/27/sccm-2012-software-update-download-failed-with-error-there-was-an-error-downloading-the-software-update-12029/
0
 
jct_777Author Commented:
Hi,

Will update you tomorrow regarding the FEP.

Regards,

JCT
0

Featured Post

Get your Disaster Recovery as a Service basics

Disaster Recovery as a Service is one go-to solution that revolutionizes DR planning. Implementing DRaaS could be an efficient process, easily accessible to non-DR experts. Learn about monitoring, testing, executing failovers and failbacks to ensure a "healthy" DR environment.

  • 10
  • 9
Tackle projects and never again get stuck behind a technical roadblock.
Join Now