I am having some issues installing a secondary site at a remote location and its driving me crazy. Here is the setup I have.
- - SCCM 2012 Primary Site in datacenter
- - SQL Server 2012 hosted on the primary site server
- - Firewall ports opened for 80, 135, 443, 445, 1433, 4022, 8530 on cisco and host firewalls
- - Attempting to have secondary site at each branch office
- - Secondary site server computer account is in local admin group on primary
- - Primary site server computer account is in local admin group on secondary
- - Secondary site server has full access to system management container in AD
- - Secondary site server computer account is in a security group which has sysadmin rights on the primary SQL Server
- - Utilizing Secondary Site Server pre-existing SQL 2008 R2 instance
- - Confirmed 1433, and 4022 accessibility with telnet from secondary to primary
I run the secondary site wizard from the console, it passes all prereqs and runs setup for about 5 minutes on the secondary site server and fails here (ConfigMgrSetup.log):
- ***Select dbo.fnConverBinaryToBase64String9thumbprint) FROM master.sys.certificates WHERE name='ConfigMgrEndpointCert"
- CSControlSetup::ReadCertificateThumbprint : Failed to get SSB certificate thumbprint.
- Error: Failed to setup SQL Server certificate for service broker "%NameOfMySecondarySiteServer%"
- Error:Failed to initialize site control data.
Ive searched around and the only thing I really saw was a reference to a local LSA password filter, which my secondary site server does not have.
Any ideas?
Thanks!
- Edited by Matt Hansen0 8 hours 53 minutes ago