Re: Help need desperately!
From: Ed Murphy (EdMurphy_at_discussions.microsoft.com)
Date: 01/25/05
- Next message: Mike: "Re: Network Discovery doesn't discover all workstation on the network"
- Previous message: Mike: "Re: Network Discovery doesn't discover all workstation on the network"
- In reply to: Christopher W. Urban: "Re: Help need desperately!"
- Messages sorted by: [ date ] [ thread ]
Date: Tue, 25 Jan 2005 10:25:02 -0800
First, let me thank you for responding to my cry for help. These problems
have been invading my sleep! I will address each point below.
"Christopher W. Urban" wrote:
> Okay, you have a lot of things going on... so, let's break some things down.
> Have you given your SMS Server's machine account FULL CONTROL of the Systems
> Management Container in AD? If not, do FULL CONTROL and ALL CHILD OBJECTS.
> The SMS 2003 Server will publish itself to AD.
>
The SMS Server's name is Newton and yes ECE\NEWTON$ has full control of
the systems management container and all child objects.
> From there, what do you have for your SMS Site Boundaries? Are your "soon to
> be clients" on that same subnet or AD Site? You need to configure your
> Client Push Installation Account which has to be a local administrator of
> the machines you're attempting to install. I'm assuming the targeted
> machines are already discovered or you wouldn't be able to push to them.
> Check through the SMS Server logs, DDM.log and CCM.log. Do you see the
> target machines being discovered and then attempting to install? You should
> see in the CCM.log the SMS server attempting to connect to the targeted
> machine\admin$ with the account that you configured above.
>
I believe that I have the site boundaries configured properly. Site
Boundaries include the Subnet IP that our whole department is in and I have
also included the AD site for good measure. The Roaming Boundaries include
the AD site only. All machines are in the same subnet and AD Site.
The Client Push Installation Account is a member of the a security group
which is defined as a member of the local admins group on each machine.
Although I am configured for Advanced Security, I have also set the Advanced
Client Network Access Account, just to be safe.
All clients are discovered, assigned and have successfully installed the
Advanced Client.
I don't see any glaring problems in the ccm and ddm logs except that the
server is unable to install a client on one of the machines and that is
because it is offline.
> Give some feedback on what else you're seeing. Make sure your MP is
> configured properly as well.
The MP, which is on the same server seems to be fine. I have run the
MPtroubleshooter without errors. The only thing worth noting there is that I
had to change the identity for the SMS app pools to LOCAL SYSTEM to get them
to work, but I have had no problems with them since.
The only warnings or errors that I have seen in the logs at all pertain to
some perflib errors and some WMI classes not present on the clients, which I
saw in their inventory.log files. That is what is making this so
frustrating. Everything seems to be working. I can use the remote tools on
the clients and they claim to be reporting the inventory to the
MP_HINVENDPOINT.
I would be happy to send you a copy of any logs you would care to inspect.
Once again, thank you for your attention.
>
> --
>
> Chris
> http://www.learnmom.com
> http://www.learnsms.com
> chris@learnsms.com
>
>
> "Ed Murphy" <EdMurphy@discussions.microsoft.com> wrote in message
> news:76985AA9-2538-4D7C-9805-F4FA77F39F25@microsoft.com...
> >I am at my end. I have been trying to get SMS 2003 to work for 3 weeks
> >now.
> > Everything is installed and running, yet when I look at the resource
> > explorer, I don't see hardware or software data collected. Let me fill in
> > some detail. I have installed a new Windows Server 2003. I have also
> > installed SQL 2000, SP3a and SMS 2003 on this same machine. I configured
> > SMS
> > 2003 up to the point of dealing with the clients. I then installed SMS
> > 2003
> > SP1 and pushed clients. I am running in an extended AD with Advanced
> > Security. There are no obvious complaints in the Status messages. The
> > inventoryagent.log has lines in it saying,"Inventory: Successfully sent
> > report. Destination:mp:MP_HinvEndpoint, ID:
> > {D3B089E2-0128-4360-B469-9CC075DE6756}, Timeout: 80640 minutes MsgMode:
> > Not
> > Signed, Not Encrypted InventoryAgent 1/24/2005 3:11:59 PM 2268 (0x08DC)"
> >
> > I am not sure of the logs I need to look at on the server, but I can tell
> > you that scanning all of them, I see no obvious problems. I have read
> > through hundreds of pages of documentation and many news postings and I
> > cannot find any clues. I have gone as far as completely removing all
> > traces
> > of SMS on clients and the server a couple of times and tried to
> > re-install.
> > I have added the servers machine$ account to all the applicable groups so
> > I
> > don't think it is a permissions issue. I don't know what else to try or
> > for
> > that matter what other information I should post here so someone can help
> > me
> > troubleshoot.
> >
> > The only other issues that seem to be appearing are warnings in the event
> > logs about WMI impersonnations and some perflib errors, I am still trying
> > to
> > figure out.
> >
> > If anyone would please take pitty on me and point me in the right
> > direction.
> > I would be enternally grateful.
> >
>
>
>
- Next message: Mike: "Re: Network Discovery doesn't discover all workstation on the network"
- Previous message: Mike: "Re: Network Discovery doesn't discover all workstation on the network"
- In reply to: Christopher W. Urban: "Re: Help need desperately!"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
