Endpoint Protection won't run from SCCM

I go to my test device collection in sccm 2012 r2 --> right click --> Endpoint Protection --> Full Scan

I checked on the client computer, the endpoint was not running.

I waited for awhile and checked it again --> still same no action.

I checked in sccm Monitoring --> client operations --> Full Scan task went grayed out with expired status. It has client (1), success (0), Failed (0), Offline (1), Unknown (0).

That computer was not offline. Did I miss or doing anything wrong here? Please advise. I need to scan about 35 computers in other city office.

Thanks in advance!

January 29th, 2015 9:58pm

Hi,

Make sure that the clients can communicate with the MP on port 10123 which is the port used for the "fast channel" that is used. you can also check on the MP or client using Netstat that the client in question is connected to the MP over that port. that is where I would start.

Regards,
Jrgen 

Free Windows Admin Tool Kit Click here and download it now
January 30th, 2015 12:44am

I netstat on the MP and found TCP 10123 was there Listening.

I telnet form the client computer to MP server with that port and it went in.

One other thing I have been noticing is - the CCM Notification Agent which is at Disabled status on client computers. I don't know if that causing it.

Please advise. Thanks!

January 30th, 2015 1:55am

Hi,

>>the CCM Notification Agent which is at Disabled status on client computers.

This could be the cause. Is there any information in CcmNotificationAgent.log on the client?

You could also check the blog below.

Fast Channel for System Management - Client Notification in System Center 2012 Configuration Manager SP1

http://blogs.technet.com/b/configmgrteam/archive/2012/09/27/fast-channel-for-system-management.aspx

Best Regards,

Joyce

Free Windows Admin Tool Kit Click here and download it now
January 30th, 2015 12:23pm

I did go through that great technet blog page. I have all the settings in place but whenever I tried to right click on the computer in the console - Client Notification - Download Computer Policy, I receive the error "The client you selected is not online. Click OK to send the notification or click Cancel."

I always been noticing CCM Notification Agent in client applet which is at Disabled status. Thanks for letting me know that is major portion involves in this case.

The highlighted items in the CcmNotificationAgent.log are:

Bgb client agent is disabled

TCP Listener is disabled.

I am researching online for the similar topics but still haven't found the solution yet.

Thanks



  • Edited by Mecoy Friday, January 30, 2015 8:47 PM
January 30th, 2015 11:46pm

I did go through that great technet blog page. I have all the settings in place but whenever I tried to right click on the computer in the console - Client Notification - Download Computer Policy, I receive the error "The client you selected is not online. Click OK to send the notification or click Cancel."

I always been noticing CCM Notification Agent in client applet which is at Disabled status. Thanks for letting me know that is major portion involves in this case.

The highlighted items in the CcmNotificationAgent.log are:

Bgb client agent is disabled

TCP Listener is disabled.

I am researching online for the similar topics but still haven't found the solution yet.

Thanks



  • Edited by Mecoy Friday, January 30, 2015 8:47 PM
Free Windows Admin Tool Kit Click here and download it now
January 30th, 2015 11:46pm

Hi,

Have you checked the General Actions and Site tab in Configuration Manager Properties? Do they show correctly as a working client?

Please also check the client health via logs, such as CcmExec.log, CcmEval.log.

Best Regards,

Joyce

February 1st, 2015 10:11pm

This topic is archived. No further replies will be accepted.

Other recent topics Other recent topics