none
sccm network ports accessbility

    דיון כללי

  • my sccm sever senario is like this  i have central  primary server (location A) secondary server (location B) both are connected via wan links

    i  need to use client push method .so can i instruct network team to open ports from secondary server to all clients(in secondary location) or do i need to open ports from central server to all the client also(in the secondary location) . i will be pushing clients from central primary sites to secondary location clients (boundaries are added proper) but only network ports opend is from secondary to clients not from central primary(is this correct) .central primary is having all need connectivty to secondary sever .please suggest

    regards

    ankith

    יום שני 12 מרץ 2012 18:55

כל התגובות

  • I'm making a couple of assumtions here.

    1. I assume you want to centralize the discovery process and it will run only at the central site server.

    2. I assume you mean automatic client push.

    If those are correct assumtions you will need the random high ports for RPC open between the clients and the central site server.


    John Marcum | http://myitforum.com/cs2/blogs/jmarcum/|

    יום שני 12 מרץ 2012 19:01
  • hi john

    no i have enabled discovery in secondary sites .i have created collections for secondary location clients  .now i will manually  push .i mean right clik on collection and install cient .but my network access   is only enbaled from secondary server to all clients in secondary location(this is other side of wan network).will this will work.my secondary site is  PMP .i dont want tio enable client push ..i have added the account and manually push

    regards

    ankith

    יום שני 12 מרץ 2012 19:12
  • If you are using manual push to install the client agent, this always comes from the primary site and not the secondary. There is no direct way around this but depending upon you requirements there are other ways to install the client like startup scripts which require no ports open at all.

    If you must use manual client push and must push from the secondary, a possible solution is to directly submit a CCR to the secondary using a script. This is not built-in functionality though so will require CCR creation knowledge as well as the use of an automation tool or language.


    Jason | http://blog.configmgrftw.com | Twitter @JasonSandys

    יום שני 12 מרץ 2012 22:54
  • so u mean to say for manual push i need to open ports from central server to all clients in secondary location.

    regards

    ankith

    יום שלישי 13 מרץ 2012 01:50
  • so automatic push means just enabling client push properties on site level is that correct .

    will this happen from secondary site if i enable discovery on secondary site . if this works i need to open ports only from secondary site to all clients in secondary location .please give me clear answer .i am stuck

    regards

    ankith

    יום שלישי 13 מרץ 2012 02:21
  • The site that discovers the computer would be where the DDR is generated and also where the ccr is generated. If that's the secondary site then the client would push from the secondary site. This will work ok if you have an OU for each location where there is a physical server and you only discover that OU from that one site. If you are discovering the same computers from multiple sites there's no way to determine the behavior.


    John Marcum | http://myitforum.com/cs2/blogs/jmarcum/|

    יום שלישי 13 מרץ 2012 12:26
  • The behavior is described in detail in this blog post: http://myitforum.com/cs2/blogs/jgilbert/archive/2007/02/22/sms-2003-client-push-installation-method-explained.aspx.

    Jason | http://blog.configmgrftw.com | Twitter @JasonSandys

    יום שישי 16 מרץ 2012 17:00