Welcome to the Blogcast Repository Sign in | Join | Help
Search BlogCastRepository.com for:
in Search

246 BlogCasts in The BlogCast Repository!
The Blogcast Repository » Technical Help Forums » System Center Configuration Manager 2007: SCCM 2007 » SCCM 2007 WITH nap SERVER 2008

SCCM 2007 WITH nap SERVER 2008

Last post 07-14-2008 1:14 PM by Brian S. Tucker. 1 replies.
Page 1 of 1 (2 items)
Sort Posts: Previous Next

  • 07-11-2008 5:11 AM

    • hanig
    • Top 100 Contributor
      Male
    • Joined on 07-11-2008
    • Lebanon
    • Posts 9
    • Points 65

    SCCM 2007 WITH nap SERVER 2008

    Reply Contact

    Dears,
    I have one server running SCCM 2007,configured with  system update role wherethe nap role is installed on windows server 2008.The Windows 2008 configured as a NAP server(using DHCP) and DHCP role,I configured the system health validiator using windows xp to have the firewall on and windowsupdate with critical updates only.both servers are joined to a domain.Also I configured the network access protection on sccm
    I have client machine running windows xp with sp3,the nap clinet is enabled on it,the client check about the system health,if the firewall is off it will turn it on,but iam having problem with installing the updates from sccm 2007 to the client.
     
    i need a reply for this issue as soon as possible

    waiting for your reply

    hani
    • Post Points: 20

  • 07-14-2008 1:14 PM In reply to

    Re: SCCM 2007 WITH nap SERVER 2008

    Reply Contact

    Sounds like a possible port issue if the firewall keeps applying. Here are all the ports needed for each function...

     

    SCCM Site to SCCM Site  Communications

    		 TCP UDP SCCM to State Migration Point TCP UDP
    SMB 445   Server Message Block (SMB) 445  
    PPTP 1723   RPC Endpoint Mapper 135 135
    SCCM Site to Domain Controller TCP UDP Management Point to the Domain Controller TCP UDP
    LDAP  389   LDAP 389  
    LDAP SSL 636 636 LDAP SSL 636 636
    GC DAP 3268   GC LDAP 3268  
    GC LDAP SSL 3269   GC LDAP SSL 3269  
    RPC Endpoint Mapper 135 135 RPC Endpoint Mapper 135 135
    RPC Dynamic   RPC Dynamic  
    Kerberos   88 Kerberos   88
    SCCM Site to SUP Servers TCP UDP SCCM Site to the Reporting Point TCP UDP
    Server Message Block (SMB) 445   SMB 445  
    Hypertext Transfer Protocol (HTTP) 80 or 8530   RPC Endpoint Mapper 135 135
    Secure Hypertext Transfer Protocol (HTTPS) 443 or 8531   RPC Dynamic  
    SUP to Internet TCP UDP SCCM Admin Console to the Internet TCP UDP
    Hypertext Transfer Protocol (HTTP) 80   HTTP 80  
    SCCM Client to SUP Connection TCP UDP Management Point to the SCCM Site TCP UDP
    HTTP 80 or 8530   RPC Endpoint Mapper 135  
    HTTPS 443 or 8531   RPC Dynamic  
    SCCM Client to the State Migration Point TCP UDP SCCM Admin Console to the Client TCP UDP
    HTTP 80   Remote Control (control) 2701 2701
    HTTPS 443   Remote Control (data) 2702 2702
    SMB 445   Remote Assistance (RDP and RTC) 3389  

     

    SCCM Client to the PXE Service Point

    		 TCP UDP SCCM Site to the Server Locator Point TCP UDP
    Dynamic Host Configuration Protocol (DHCP) 67 and 68 SMB 445  
    Trivial File Transfer Protocol (TFTP) 69 RPC Endpoint Mapper 135 135
    Boot Information Negotiation Layer (BINL) 4011 RPC Dynamic  
    SCCM Site to the PXE Service Point TCP UDP SCCM Site to SCCM Provider TCP UDP
    SMB 445   SMB 445  
    RPC Endpoint Mapper 135 135 RPC Endpoint Mapper 135 135
    RPC Dynamic   RPC Dynamic  
    SCCM Site to the System Health Validator TCP UDP SCCM Client to the Distribution Point TCP UDP
    Server Message Block (SMB) 445   HTTP 80  
    RPC Endpoint Mapper 135 135 HTTPS 443  
    RPC Dynamic   SMB 445  
    SCCM Client to the System Health Validator TCP UDP SCCM Site to the Distribution Point TCP UDP
    Only needed on the ports connected to the Network Access Protection servers (DHCP and Ipsec). 802.1X Does not need any ports SMB 445  
    DHCP   67 and 68 RPC Endpoint Mapper