Hi … today we are going to discuss some of the problems you might face while tacking backup using DPM 2012 on tape library..
First error I faced not too long ago is access denied error
Hi … today we are going to discuss some of the problems you might face while tacking backup using DPM 2012 on tape library..
First error I faced not too long ago is access denied error
when pushing the SCCM clients behind fire wall you may get this error:
CWmi::Connect(): ConnectServer(Namespace) failed. – 0x800706ba
This error is because the SCCM Client uses Dynamic RPC connections for WMI (the DCOM RPC uses callback for the event receipt which chooses random ports 1024-65534.)
you need to open the following ports :
Description |
UDP |
TCP |
Server Message Block (SMB) between the site server and client computer.
|
— |
445 |
RPC endpoint mapper between the site server and the client computer.
|
135 |
135 |
RPC dynamic ports between the site server and the client computer.
|
— |
DYNAMIC |
Hypertext Transfer Protocol (HTTP) from the client computer to a management point when the connection is over HTTP.
|
— |
80
|
Secure Hypertext Transfer Protocol (HTTPS) from the client computer to a management point when the connection is over HTTPS. |
— |
443
|
check this …Windows Firewall and Port Settings for Client Computers in Configuration Manager
sooooo you need to open the Dynamic ports on the firewall 1024-65534 which is not very good idea …. since you only need them for client push you can coordinate with you security admin to open them on branch per branch or subnet by subnet basis for a day or so and close these ports again as soon as you finish pushing your client “at least this is how it worked for me ”
During the last part we have seen how to prepare our environment for OS deployment and how to capture OS we are using as reference image for the deployment .
-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_
NOTE:
Configuration we did during the last part of our series is only the SCCM related configuration
there is others related to DHCP and Network
DHCP:
Options 66 and 67 must be configured so that a PXE client can locate the PXE point and boot into Windows PE using our boot images
Option 66 is the PXE server name or IP
Option 67 is the file name “SMSBoot\x64\wdsnbp.com”
Network:
If your PXE Client “booting computer” and the PXE enabled DP are not in the same subnet , you have to configure IP Helper on your switch
-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_
Will continue by creating a new device collection for which the operating system is going to be deployed., Right click on Device Collections, click Create Device Collection.
You already know that there is no in place upgrade from the old SCCM2007 to 2012 what if you had an existing SCCM 2007 …simply you will build your new SCCM 2012 as we did during the last 9 parts and then migrate you data from the 2007 SCCM.
In Microsoft System Center 2012 R2 Configuration Manager, the built-in migration functionality replaces in-place upgrades of existing Configuration Manager Infrastructure by providing a process that transfers data from active Configuration Manager 2007 sites. Migration can transfer most data from Configuration Manager 2007.
Migration can migrate most objects from Configuration Manager 2007 to System Center 2012 Configuration Manager. The migrated instances of some objects must be modified to conform to the System Center 2012 Configuration Manager schema and object format. These modifications do not affect the data in the Configuration Manager 2007 database.
You can migrate the following types of objects:
· Collections
· Advertisements
· Boundaries
· Software distribution packages
· Virtual application packages
· Software Updates:
o Deployments
o Deployment packages
o Templates
o Software update lists
· Operating System Deployment:
o Boot images
o Driver packages
o Drivers
o Images
o Packages
o Task sequences
· Desired Configuration Management:
o Configuration baselines
o Configuration items
· Asset Intelligence customizations
· Software metering rules
Distribution Points are helpful when you have a branch office that has number of clients “less than 500 client” connected through WAN to your HO. You can distribute OS images and software packages through a DP which will reduce latency and bandwidth consumption. Packages will be distributed to the DP over the WAN once and the clients pull it from the local DP over the LAN.
First we need to add the SCCMAdmin account and the SCCM Site Server account to local administrators group on the machine that will be a DP, and open the required ports.
We are going to install one secondary site server for SCCM 2012 R2. Generally installing secondary site is recommended if you have Brach with more 500 clients in a remote location, this might overload the network even with the new 2012 Distribution point’s features. if you need software update point or management point at this branch you shoud go for secondary site too.
First we need to add the SCCMAdmin account and the SCCM Site Server account to local administrators group on the machine .
Roles / Role Services Required for Secondary Site:
Web Server (IIS) (Can be done by SCCM)
· Application Development:
· Security:
· IIS 6 Management Compatibility:
Features Required for Secondary Site: · Remote Differential Compression · BITS . NET Requires both of the following:
|
During the first Part Part1 we have added the Software updated point and tried the Manual Software updates … Here comes the fun part
Automatic Deployment rule enables you to create update package automatically according to some criteria such as release date. It is possible for example to create update package automatically every month. Once the package is created, it is automatically deployed..
To create Automatic Deployment Rule, go to Software Library and right click on Automatic Deployment Rule and click on Create Automatic Deployment Rule
There are two deployment type for software updates using SCCM 2012 R2 (Manual and Automatic). In Manual software updates deployment, a set of software updates is selected from Configuration Manager Console and these updates are deployed to the target collection and Automatic software updates deployment is configured by using automatic deployment rules
…
First we will install the Software Update Point role. From the Configuration Manager Console, open the Administration workspace, expand Overview, click Site Configuration, and Select on Sites. At the top ribbon click on Add Site System Roles.