24 replies to this topic

[anyweb]

In Part 1. of this series we Installed vNext, in Part 2 we started to configure it. In this part we will continue configuring Beta 2 by enabling Active Directory discovery methods, adding some site system roles, configuring the computer client agent and client push settings and finally doing a manual client installation to verify it all works.

Perform the following on the vNext server as SMSadmin


Configuring Discovery Methods.

For information of Planning Discovery methods for SCCM 2012, please refer to this page on Technet.

Planning for Discovery in Configuration Manager 2012 - http://technet.micro...y/gg712308.aspx

Active Directory Discovery Methods

Configuration Manager 2012 Active Directory discovery methods can discover Active Directory sites, subnets, users, and computers that are stored in Active Directory Domain Services. To discover information from Active Directory, Configuration Manager requires access to the Active Directory locations that you specify and will use the computer account of the site server that runs the Active Directory discovery method. Or, you can specify a Windows account to run any Active Directory discovery method.

When any of the four Active Directory discovery methods run, Configuration Manager contacts the nearest domain controller in the Active Directory forest to locate Active Directory resources. The domain and forest can be in any supported Active Directory mode, and the account that runs the discovery method must have Read access to the specified Active Directory containers. During discovery, the discovery method searches the specified locations for objects and then collects information about the object.

With the exception of Forest Discovery, all the Active Directory discovery methods support Delta Discovery.

Step 1. Enable Active Directory Security Group Discovery


Click on the Administration workspace, expand Overview, Site Hierarchy, Discovery Methods



You can see that we have already enabled Active Directory Forest Discovery (Heartbeat Discovery is automatically enabled), so let's enable some additional discovery methods otherwise our computers (and users) will not appear in Assets and Compliance.





Double click on Active Directory Security Group Discovery, place a checkmark in enable active directory security group discovery



click on the yellow starburst to add an Active Directory container, once done click on Browse and select your chosen active directory container to search during the discovery process



click Ok when done



note that enabling discovery will trigger full polling to be run immediately





Step 2. Enable the other three Active Directory discovery methods

Repeat the above for the remaining discovery methods

• Active Directory System Discovery
• Active Directory System Group Discovery
• Active Directory User Discovery

The following Discovery Methods should now be Enabled




Step 3. Verify that discovery is working


In the console, click on Assets and Compliance




Discovery of Computers

Click on Device Collections, then click on All Systems, you should now see both AD1 (was previously missing) and the vNext server listed.



Double click on AD1 (your Domain controller computer) and you should see details about the system including discovery details (it was discovered using Active Directory System Discovery and Active Directory System Group Discovery).



Click on Close.

Discovery of Users

Click on User Collections in the left pane, Click on All Users and in the Ribbon, click on Show Members



the contents of All Users are displayed (these are the users we created in Part 1 of this guide)



Double click on a user and you'll see the discovery information listed, including discovery type (sms_ad_user_discovery_agent)



click ok to Close.



Using logs to verify discovery

In addtion to the visual verification we did above, you can browse the Logs folder of where you installed SCCM 2012, eg: D:\Program Files\Microsoft Configuration Manager\Logs
and find the following discovery logs


adforestdisc.log
adsgdis.log
adsysdis.log
adsysgrp.log
adusrdis.log

these log files can be opened with Trace64 and you'll see lots of interesting info in there such as starting the discovery and what type of discovery it is (the below sample screenshot is from the first discovery after enabling Active Directory User Discovery from adusrdis.log)




Step 4. Add the Catalog Web Service Point and Catalog Web Site Point roles

We will be setting some options in the next step which require certain roles to be installed, so in Administration, expand Site Operations, Servers and Site System Roles, right click on our site and choose Add site system role



create roles wizard appears, click next



select the following roles

• Application Catalog Web Service Point
• Application Catalog Web Site Point

and click next



accept the following values for the application catalog web service point, make sure to manually change port 443 to port 80.



add your organization name to the application catalog web site point, verify it says port 80 and not 443



click next at the summary and review the completion

[anyweb]

Configuring Client Agent Settings

Please refer to Planning for Client Settings in Configuration Manager 2012 on Technet.

You manage all client settings in Configuration Manager 2012 from the Client Settings node in the Administration workspace of the Configuration Manager console. Modify the default settings when you want to configure settings for all users and devices in the hierarchy that do not have any custom settings applied. If you want to apply different settings to just some users or devices, create custom settings and assign these to collections.

• More details from Technet available below:-
  
• How to Configure the Default Client Settings
• How to Create and Assign Custom Client Settings

Step 5. Configure the Client Agent

In the navigation pane, select Administration, then click Client Settings, select Properties from the ribbon. Currently there is only one client agent setting available – Default Client Agent Settings.



the Default settings appear



to start off with, let's configure the client Policy polling interval, select Client Policy in the left pane and change the value from 60 minutes (default) to 15 minutes as this is a LAB and we want our client to poll for changes in policy every 15 minutes.



To change the Organization Name listed in the client agent, select Computer Agent in the left and type in your organization name



to the right of Default Application Catalog website point, click on Set Website...



select our VNEXT server from the drop down menu



change Add default application catalog website to Internet Explorer trusted sites zone to True



Now select Hardware Inventory on the left and then click on Set Classes



select TPM from the list of available classes, this will be a class that is reported on in the site's sms_def.mof



Now click on Remote Control in the left and set prompt user for remote control permission to false (useful when you want to remote to a Server)



Select Software Updates and set the Install all required software updates when deadline occurs to True



click ok to exit from modifying default settings.

[anyweb]

Deploying the Client Agent

Now that we have made changes to the Default Client Agent settings, we want to deploy it to our clients. Before doing so we need to decide what method is appropriate for installing the client on our computers.

The following methods are available

Client Installation Method Description

• Client push installation - Automatically installs the client to assigned resources and manually installs the client to resources that are not assigned.
• Software update point installation - Installs the client by using the Configuration Manager 2012 software updates feature.
• Group Policy installation - Installs the client by using Windows Group Policy.
• Logon script installation - Installs the client by using a logon script.
• Manual installation - Manually installs the client software.
• Upgrade installation - Upgrades clients to a newer version by using Configuration Manager 2012 application management. You can also use Configuration Manager 2007 software distribution to upgrade clients to Configuration Manager 2012.
• Client Imaging - Prestages the client installation in an operating system image.

Please refer to Technet to Determine the Client Installation Method to Use in Configuration Manager 2012.

For the purposes of this LAB we will select Client Push Installation.


Step 6. Enable Client Push Installation

In Administration, expand Site Operations, Sites, select our site P01, choose Client Installation Settings in the Ribbon.



select Client Push Installation from the drop down menu



make sure that enable automatic site-wide client push installation and the Configuration Manager site system servers options are selected



click on the Accounts tab and click on the yellow starburst, enter the user details of your ClientInstall account



this user must be in the local adminstrators group on your destination computers



click Ok

[anyweb]

Step 7. Manually installing the client using the wizard

In Assets and Compliance select our Domain Controller (AD1) right click and choose Install Client



when the Install Client Wizard appears click Next



select the first two options (allow the client software to be installed on domain controllers and Always install the client software) as we only have one site currently (P01)

review the summary



and completion




Step 8. Verify client installation

On the AD1 computer, you can open Task Manager and verify that Ccmsetup.exe is running, this means your Client software is installing.



after some minutes the clients are installed and it is reflected in Assets and Compliance (client=Yes)



and you'll see new software installed in your start menu, including Microsoft Silverlight and Microsoft System Center Configuration Manager 2012 Software Center



and you can start Software Center and you'll see the IT Organization we configured earlier listed in the Top Right corner



and finally you can view the client agent itself by opening up control panel, search for Config, and you'll see the Configuration Manager Client, click on it

[ramlan]

Hello,

When you say install client on AD1 (which is a domain controller) and, I see you have successfully installed the client. In my case, I am unable to install the client because clientinstall (user) is not a member of Local Administrators group (which is one of the requirement to install the software as per your description).

On the Domain Controller there is no option to add clientinstall (user) to Local Administrators. Can you help me here how to proceed with.

I just started SCCM2012 install and, I am new to this subject.

Thanks

Ram

P.S: Ignore the message - Found a way to complete the client install.

[edcraven1978]

Can anyone help?

I am new to SCCM and an trying to learn it in a lab environment. I have successfully setup a vmware lab based on the guides provided by this site.
I have followed every step in these guides and have experienced success with everything, however, when I try to open software center on my domain controller, the WIndow is white with nothing displayed inside. Also, when I click on Configuration manager in control panel, There are many properties on the general tab and many actions missing from the actions tab. Any Advice?

Eric Craven

[anyweb]

if you review the Status component logs on your Configmgr server, does anything look wrong ?

[edcraven1978]

Please pardon my lack of knowledge and inexperience but where would I find these log files and what should they look like? This is literally my very first time messing around with any sort or server or SCCM configurations.

Thank You,

Eric Craven

[anyweb]

in configmgr console click on Monitoring, expand it out so you can see system status/component status logs
green=good, red=bad

[cross]

my client installing is not appearing on the client computers

i checkes the monitoring and found the following errors
sys_ad_system_group_discovery_agent showing critical
sys_ad_system_discovery_agent shows critical
sys_ad_security_group_discovery_agent showing critical
sys_ad_user_discovery_agent shows critical
sys_portalweb_control_manger shows critical
sys_awebsvc_control_manger shows critical

any ideas and solutions

[cross]

in addition to the above errors i get the following warningns
sms_hierarcy_manager shows warning
sms_client_config_manager
sms_site_component_manager
sms_database_notification_monitor
sms_mp_control_manager

i need your advice on the issues

[Peter van der Woude]

What error messages do you have in your discoveries?

[cross]

there is no errors in the discovers

[cross]

the installation of the client now appears on the client computers but it shows white without any information. any help

[cross]

also when i check the configuration properties of the clent it show the following

client certificate none
connection type unknown
version 5.007561

[n00blar]

Excellent work on the how-to Niall

[jimtully]

Ok so I am up to the point of pushing the client. It appears that the client is pushing. ccmsetup.exe shows in the task manager. Once that finishes I then see CcmExec.exe. Silverlight and Software Center are now in my start menu. However the SCCM console still says client: No and the Software center is a blank white screen. Please help!

[anyweb]

one thing i must point out, are you testing this with Beta 2 (the old version) or the current release (Release Candidate) ?

[jimtully]

beta 2

[anyweb]

well the new and current version is SCCM 2012 Release Candidate - see here, i've already done a bunch of guides for it, my advice, forget about beta 2 and move to the new version, sorry !