Hi,
We had an issue with the SCCM 2012 R2 remote console.Below are the details of the configuration
We have installed SMS provider on standalone primary site server and created few security roles based on the administrators roles/activities. Also created Administrative users in SCCM console and assign them to one of the Security roles where it had "Read" permissions to the "Site". When these users are trying to launch a remote SCCM console, its not connecting and giving error message.
*****************
The Configuration Manager console cannot connect to the Configuration Manager site database. Verify the following:
This computer has network connectivity to the SMS Provider computer.
Your user account has Remote Activation permission on the Configuration Manager site server and the SMS Provider computer.
The Configuration Manager console version is supported by the site server.
You are assigned to at least one role-based administration security role.
You have the following WMI permissions to the Root\SMS and Root\SMS\site_<site code> namespaces: Execute Methods, Provider Write, Enable Account, and Remote Enable.
*****************
Addition to that, I have checked and given COM and WMI permissions on the server as per the point (5) in the above error message
For the security scope, we have assigned Default security scope.
Per my observation, users that are part of Local Administrator group of the primary site server, can able to launch the SCCM console. However only members in SMS Admins group could not able to launch the remote SCCM 2012 R2 console.
Please let me know, Did i missed any configuration on the server end, Security role and Security scope?
Below is the XML file that i have exported from the Security role that users has been assigned.
++++++++++++++++++++++++++++++++++++
<?xml version="1.0"?>
-<SMS_Roles>
-<SMS_Role RoleDescription="" RoleName="Local IT" CopiedFromID="SMS0007R">
-<Operations>
<Operation ObjectTypeID="1" GrantedOperations="20513"/>
<Operation ObjectTypeID="2" GrantedOperations="268435457"/>
<Operation ObjectTypeID="4" GrantedOperations="268435457"/>
<Operation ObjectTypeID="6" GrantedOperations="268435457"/>
<Operation ObjectTypeID="7" GrantedOperations="9219"/>
<Operation ObjectTypeID="9" GrantedOperations="268435456"/>
<Operation ObjectTypeID="11" GrantedOperations="268435456"/>
<Operation ObjectTypeID="15" GrantedOperations="1"/>
<Operation ObjectTypeID="17" GrantedOperations="268435456"/>
<Operation ObjectTypeID="20" GrantedOperations="268435456"/>
<Operation ObjectTypeID="22" GrantedOperations="268435456"/>
<Operation ObjectTypeID="25" GrantedOperations="268435456"/>
<Operation ObjectTypeID="28" GrantedOperations="268435456"/>
<Operation ObjectTypeID="30" GrantedOperations="268435456"/>
<Operation ObjectTypeID="31" GrantedOperations="268435456"/>
<Operation ObjectTypeID="33" GrantedOperations="268435457"/>
<Operation ObjectTypeID="37" GrantedOperations="268435456"/>
<Operation ObjectTypeID="41" GrantedOperations="268435456"/>
<Operation ObjectTypeID="42" GrantedOperations="9"/>
<Operation ObjectTypeID="43" GrantedOperations="1"/>
<Operation ObjectTypeID="44" GrantedOperations="805306371"/>
<Operation ObjectTypeID="45" GrantedOperations="1"/>
<Operation ObjectTypeID="46" GrantedOperations="1"/>
<Operation ObjectTypeID="47" GrantedOperations="268435456"/>
<Operation ObjectTypeID="49" GrantedOperations="268435456"/>
<Operation ObjectTypeID="52" GrantedOperations="268435456"/>
<Operation ObjectTypeID="55" GrantedOperations="268435457"/>
<Operation ObjectTypeID="56" GrantedOperations="268435456"/>
<Operation ObjectTypeID="57" GrantedOperations="268435456"/>
<Operation ObjectTypeID="58" GrantedOperations="268435456"/>
<Operation ObjectTypeID="59" GrantedOperations="268435456"/>
<Operation ObjectTypeID="60" GrantedOperations="268435456"/>
<Operation ObjectTypeID="61" GrantedOperations="268435456"/>
</Operations>
</SMS_Role>
</SMS_Roles>
++++++++++++++++++++++++++++++++++++