Jump to content


Bram

Secondary site prerequisite check fails at domain check

Recommended Posts

I'm currently trying to set up a new secondary site with SCCM 2111 on Windows Server 2019 and the prerequisite check fails with:
[Failed]:Configuration Manager site server components must be installed on computers that are members of a Windows domain.

In ConfigMgrPrereq.log this is noted as:
INFO: Failed to get Active Directory membership information for computer SCCM02-SHA.company.local with 53.
SCCM02-SHA.company.local;    Domain membership;    Error;    Configuration Manager site server components must be installed on computers that are members of a Windows domain.

The server is definitely domain joined, the firewall disabled and all other checks pass without any issue even the 'Check to see if the site server has permissions to publish to Active Directory.'

Does anyone know how being domain-joined is checked? I tried finding out with Procmon during the check but couldn't find anything relevant.
Is there any way to force the secondary site installation?

Share this post


Link to post
Share on other sites

on that server open a cmd prompt and do

gpupdate /force

if there's anything 'wrong' with the domain join, that'll tell you, particularly if it was a domain joined vm that was snapshotted back in time, that can drop the trust relationship

Share this post


Link to post
Share on other sites

Thanks for the feedback, tested gpupdate and it completed successfully. Also double-checked with Test-ComputerSecureChannel:
VERBOSE: Performing the operation "Test-ComputerSecureChannel" on target "SCCM02-SHA".
VERBOSE: The secure channel between the local computer and the domain company.local is in good condition.

Meanwhile I've upgraded the main site to 2203 hoping there was maybe an undocumented bug fix but the secondary site is still failing at the domain member check.

Share this post


Link to post
Share on other sites

can you share the entire ConfigMgrPrereq.log, feel free to remove any private info first

Share this post


Link to post
Share on other sites

have you looked at your SQL firewall ports on the primary, there are several errors connecting to it in the start of the log
 

*** [08001][2][Microsoft][SQL Server Native Client 11.0]A network-related or instance-specific error has occurred while establishing a connection to SQL Server. Server is not found or not accessible. Check if instance name is correct and if SQL Server is configured to allow remote connections. For more information see SQL Server Books Online.

*** Failed to connect to the SQL Server, connection type: SCCM02-SHA.company.LOCAL MASTER.

ERROR: Failed to connect to SQL Server 'master' db.

 

Share this post


Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Loading...


×
×
  • Create New...