Hi All,I am new to SCCM.I have setup a testing domain for the SCCM with all roles as mixed mode in a single machine.On the same domain, I have few XP computers with Firewall closed.Now I can do all tasks I want.1. Discovery computers on the same domain in SCCM console.2. Push install SCCM client.3. Gether alll hardware/software inventory in the site collection.4. Publish software package to the computers in the site colleciton.The final problem before deploy to production site is what ports need to open in the client computer....After read the MS documents, I got the following:1. To Discovery computers from SCCM console, open port: TCP 80/4432. To Push install SCCM client, open File and Printer sharing port: TCP 139/445 and UPD 137/1383. Gether alll hardware/software inventory in the site collection, open port: TCP 80/4434. Publish software package to the computers in the site colleciton, open port: TCP 80/443.5. After I have installed the SCCM client in the client computer, I can close the File and Printer sharing port.Please correct me if any port I mentioned is wrong or not needed, and any other ports I need to open permantently to manage the client computer in long run?Thanks!!!!Notmen

Hi Notmen,You have a list of all the ports used in this article - http://technet.microsoft.com/en-us/library/bb632618.aspx and in this you have information about the client and firewall settings - http://technet.microsoft.com/en-us/library/bb694088.aspxKent Agerlund | http://scug.dk/members/Agerlund/default.aspx | The Danish community for System Center products

Point 5 is correct, only reason for enabling file and printersharing is to get access to the admin$ share during the client push installation process.Kent Agerlund | http://scug.dk/members/Agerlund/default.aspx | The Danish community for System Center products

A quick clarifying point here, point 2 is inbound on the client, points 1, 3, and 4 are outbound from the client; i.e., after the client is installed, all traffic is client initiated.Jason | http://myitforum.com/cs2/blogs/jsandys | http://blogs.catapultsystems.com/jsandys/default.aspx | Twitter @JasonSandys