Reinstalling WSUS after SCCM installation

If you want to use SCCM 2012 as a software update point (SUP), you will have to install WSUS first.

On Windows Server 2008 R2 installation of WSUS is integrated as a server role. You don’t need to download installer separately.

Catch is that you will need to use SCCM server database. But if you install WSUS first You will probably install its own database.

Correct steps will be:

1. – Install SQL server , and create database for SCCM use

2. – Install WSUS, and point it to SCCM database

3. – Install SCCM

But if you are install your SCCM as I do, then you will have a problem.

My steps was:

1. – install WSUS

2. – Install SQL

3. – Install SCCM

After this my only option was to uninstall WSUS, and install it back again with correct parameters.

Uninstall was completed successfully. But on installation I was faced with error. Error was “the update could not be found there may be a network connection issue”.

This error is caused by setting in GPO of SCCM server. To resolve this You must point to gpedit.msc and then go to Computer Configuration – Administrative Templates – Windows Components – Windows Update. Put “Automatic Updates” and “Specify Intranet Microsoft update service location” to “not configured”.

Important thing is that you have proxy settings configured in your correctly web browser .

After this I was able to continue with installation without error.

Why is this update option important?

WSUS using Dynamic Installer to download all needed content for installation from Microsoft websites. Wrong thinking is that WSUS binaries is on server or on CD.

Now my WSUS is working fine and I can go further with SCCM 2012

Advertisements

Microsoft Private Cloud Solution

January 17 Satya Nadella announced System Center 2012 as a Microsoft solution form manage private cloud.

System Center 2012 unites 8 independent components to one full management solution. The newest thing is System Center 2012 Unified Installer

System Center 2012 You can evaluate for free at Microsoft Server & Cloud Platform website

Can’t upgrade Windows 2008 R2 Dc to Windows 8 Server DC

If You want to upgrade Your Domain Controller from Windows server 2008 R2 to Windows 8 server on a single machine this is not possible

I was trying to upgrade my Domain Controller for test from Windows server 2008 R2 to Windows 8 server using full installation but I receive error

Win 8 Error

This is not compatibility issue, this is not supported.

In next few days I will try to add Windows 8 server as additional domain controller, and then move FSMO roles to Windows 8 DC.

I will describe all of this on my blog

Currently I’m pretty confused with this. Why Microsoft is not supported old fashion way of upgrade? Because of DP version or something else is not compatible?

SCCM Client won’t show device is server console

Usually when You install SCCM 2012 client after few minutes device appear in console view. But what if device wont show after couple restarts? (couple days)

I don’t know why this error occurred but, this is steps for resolving problem.

No Site Configured

At first, you must check connectivity to SCCM 2012 server. If connectivity is ok and you can reach server by its name do this.go to tab SITE

go to tab SITE

Site Configuration

Write number of assigned site and press Find Site

You will receive notification that Configuration Manager has successfully find site to manage this client

Site COnfigured

Check General tab again now it looks like this

Site showed up in Config client

Notify that you still don’t have “Client certificate” and “Connection Type”

But after few minutes everything is fine

After Few minutes

Your client is now visible in your SCCM console and you can manage it.

Managed Service Accounts in Active Directory

We all heard that one of many features in Windows server 2008 R2 is Managed Service Account.

Prerequisites for that is domain functionality raised to Windows Server 2008 R2

Most common mistake is that you will create managed service account using Active Directory Users And Computers snap-in. You will not.

Either if you are created account in Managed Service Accounts container it is still user account. To make it work you must give user rights “logon as a service” and “logon as a bat job”.

To create Managed Service Account you must use Power Shell. Creating service accounts is not so complicated. You can create it using simple script

New-ADServiceAccount –name (desired name of account).

Of course before you must “tell” powershell to use Active Directory module. Syntax for this is:

Import-module ActiveDirectory

And before that you must have installed feature:

Active Directory module for Power Shell

image

I’ve described this reversed with reason.

Most common is that you first load module to Power Shell and then start wit Your managed service accounts.

When you are created service account you need to install it on server where You want to use it. Syntax is:

install-ADServiceAccount –identity “(name of service account)”

To install account you must “run as administrator” Power Shell or you will receive error.

image

REMEMBER: You must have ONE managed service account per server. This is the big difference between managed service account and former virtual account.

Now you are ready to use managed service account with specific services

image

image

 

 

For more on this topic you can contact this link