Hi everyone,
I'm writing to you because I'm loosing my mind and running out of solutions.
My company had SCCM few years ago and decided to have it back.
Architecture:
Running SCCM CB 2101
We have 3 AD forest non-trusted between each other :
Domain MNG
15 clients
Primary Standalone Website installed 2101
Domain A
80 clients
DP/MP/SU installed from the primary site
Domain B
200 clients
DP/MP/SU installed from the primary site
For the installation and debugging, I did the following :
- Re-extended the AD schema
- using domain admin account for each domain to allow the primary site connection
- added each domain in AD forest on SCCM
- Install on DP/MP/SUP servers of Domains A and B the client SCCM to make DP working
- Configure the BD groups with subnets and AD site discovered
- All is configured in HTTP
- Auto approval of unknown computers
- allow anonymous client to contact the DPs
- No Windows Firewall enabled on clients / servers
- Checked the network firewall and look like nothing is blocked.
- review the IIS features and looks ok
- No relevant error on the site status
So far I have been able to install the client only on the sccm site servers manually and get them working.
When I try to install the client by push or manually, it install it, return code 0 at the end but show following error in ccmsetup.log : Failed to connect to machine policy namespace. 0x8004100e
On the clients, the software center is not present (weird?) but in the control panel I have access to the CM settings.
Here few lines of the log before and after the error :
My questions are :
1) Does my architecture is ok ? Or I should install a CAS on MNG and deploy Primary sites on each domain ?
2) Any ideas regarding this issue ?
3) The clients where i'm testing are W10x64 Enterprise LTSC 2019 (1809)
Thanks in advance !
/Lulu