locked
Install a second primary child site under a cas RRS feed

  • Question

  • Hi,

    the scenario:

    ALL is sccm 2012 based, sql server on each CAS or PR site.

    CAS und PR1 are installed in one domain.

    Now, i want to install a second PR, lets call it PR2 in the same domain under CAS.

    I followed all the prereqs, putting the installation account in the local admin groups, give sysadmin rights on the sql server

    put the computer account of PR2 in the local admin group of CAS etc.


    Also, the firewall is opened between CAS and PR2 for the used ports, especially 135 and 445.

    The first error was 135 was not opened. We correct this and now we see no blocking issues on the firewall logs.


    I follow the scenario described in the technet, installing a primary site and when the installer is at the point, to join

    the existing hirarchy, i type in the fqdn of the CAS and still get the error setup was unable to receive the site code.

    i can see nothing specific in the log. I am looking at the CAS with TCP with and can see, that first a connection

    via 135 (epmp port) is opened and than 445 (microsoft-ds port).

    I have no idea what is the problem. Is there a debug option for the installer to get more information WHAT is the error?

    With which tool i can check, if all connections are open and i have all rigths needed for the installation?

    thx for reading,

    Jörn Rink

    Wednesday, October 16, 2013 5:47 PM

Answers

  • Proper design and use of ConfigMgr is always On Topic.

    Jason | http://blog.configmgrftw.com

    • Marked as answer by Joyce L Tuesday, November 12, 2013 2:31 AM
    Monday, October 28, 2013 2:11 PM

All replies

  • So you must be managing more than 100k clients or why have you decided to install a CAS at all?
    Have you added the computer account of the CAS to the local admins on the primary, too?
    What does C:\ConfigMgrSetup.log on Primary2 tell?

    Torsten Meringer | http://www.mssccmfaq.de

    Wednesday, October 16, 2013 6:18 PM
  • 1.) Thanks for your question, but that is not my problem. We have many reasons to use a cas.

    2.) As i wrote, i have added the account to the local admin group, also my user is sysadmin on the sql server.

         Also, the installation user is domain administrator and i also added this user to the local admin group.

    3.) The Wizard log and the configmgrlog have no entry with the time stamp of the "NEXT" click.

    My question, is there an option for the setup.exe to retrieve more info?

    Thursday, October 17, 2013 9:33 AM
  • 1.) there are many misunderstandings out there when it comes to reasons for using a CAS, that's why I asked.
    2.) you wrote "put the computer account of PR2 in the local admin group of CAS". I was asking for the opposite.
    3.) not that I am aware of.

    Torsten Meringer | http://www.mssccmfaq.de

    Thursday, October 17, 2013 9:44 AM
  • 1.) thx, we thought about it. I think for us it could be usefull also for future projects, to have a CAS.

    2.)sry, that was my fault. Yes, i have done this. Is it necessary to boot the cas, so that the rights are productive?

    3.) ok, cause the content of the log is file checking of the installer files and than nothing.

    Today i reproduce the same scenario in our Test LAB. Same Code base, installed the prereqs the same way as in produktion. Also in the Test LAB the PR2 will reside in the same domain.

    I put no account in any group, just leave all as it is. And the installer was able to get the information from my test CAS and i can see the next step.

    Can i test the connection with WBEMTEST? how can i do this?

    Thursday, October 17, 2013 4:49 PM
  • 1.) thx, we thought about it. I think for us it could be usefull also for future projects, to have a CAS.

    CASes provide *no* additional functionality whatsoever. Choosing to have a CAS and/or multiple primary sites *will* cause you pain in both the short and long terms. I highly recommend you reconsider this and review the reasons for actually doing this as there truly are only two technical reasons:

    - To support 100,000+ clients

    - To support multiple large groupings of clients (10,000+) that are separated by a WAN.

    As mentioned, in neither case do you actually gain any value though.


    Jason | http://blog.configmgrftw.com

    Thursday, October 17, 2013 7:33 PM
  • Hi,

    thx for your answer but that was not the question.

    A CAS is a supported way and i have a question for this scenario.

    Please do not answer with OFFTOPIC stuff.

    Monday, October 28, 2013 11:40 AM
  • Proper design and use of ConfigMgr is always On Topic.

    Jason | http://blog.configmgrftw.com

    • Marked as answer by Joyce L Tuesday, November 12, 2013 2:31 AM
    Monday, October 28, 2013 2:11 PM