We will name the server "SCCM" and add it to the domian "trainingLAB.local" with our domain administrator account.
DCHP management we make a reservation for the "SCCM" servcer.
Right click on the current lease and make it to a reservation.
Get the MAC address from Properties. Copy it to the clipboard.
Delete the old reservation and make a "New Reservation"
Start up a cmd console on "SCCM" and release the current IP lease
ipconfig /release
grant a new lease by typing
ipconfig /renew
Check that you got the correct IP.
Disk
Add these disk to your SCCM server.
No_sms_on_drive.sms
Create a file called "no_sms_on_drive.sms" put this file on: C,D,L,T and W.
The "no_sms_on_drive.sms" prevent sccm to put content on drives we dont want sccm on.
Primary Site server prerequisites
- Logon to a server with an account that is a member of Schema Admins security group
- From SCCM ISO run .\SMSSETUP\BIN\X64\extadsch.exe
Check schema extension result, open Extadsch.log located in the root of the system drive
Create the System Management Container
Configuration Manager does not automatically create the System Management container in Active Directory Domain Services when the schema is extended. The container must be created one time for each domain that includes a Configuration Manager primary site server or secondary site server that publishes site information to Active Directory Domain Services
Start ADSIEdit, go to "System" container and create a "new Object".
Select "Container". Next.
Enter "System Management". Next.
Complete the wizard and close ADSIEdit.
Delegate control to container
Delegate control to the SCCM site server to the newly created container in AD Users and Computers.
Right click on System Management and click Delegate Control...
Next.
Click on Add... Find your site server and Add it. In this guide we called the site server: SCCM
Create a custom task to delegate.
Choose This folder, existing objects in this folder and creation of new objects in this folder
Select these permission:
- General
- Property-specific
- Creation/deletion of specific child objects
- Full Control
Review your settings here. Finish
SCCM Accounts
Create all the necessary account and groups before the installation. You can use different name but i will refer to these names throughout the guide.
Account name
|
Type
|
Description
|
SCCM-SQLService
|
User
Account
|
SQL server services account
|
SCCM-NAA
|
User
Account
|
SCCM
Network Access Account
|
SCCM-ClientPush
|
User
Account
|
Domain user account for use SCCM client push install
|
SCCM-SQLReporting
|
User
Account
|
Domain user account for use with reporting services User
|
SCCM-DomainJoin
|
User
Account
|
Domain account used to join machine to the domain during OSD
|
SCCM-Admins
|
Security
Group
|
Domain group containing all SCCM Admins Group
|
SCCM-SiteServers
|
Security
Group
|
Domain group containing all SCCM servers in the hierarchy Group
|
We add following account to the Domain Admins security group for nessesary rights.
The correct way would to delegate the right needed only. But this is a testlab so it okay.
- SCCM-NAA
- SCCM-ClientPush
- SCCM-DomainJoin
- SCCM-Admins
Windows Server Features
On the Primary site server, the following components must be installed before SCCM installation. We’ll install all these components using a PowerShell script.
- .Net Framework 3.51 SP1
- .Net Framework 4
- IIS
- Remote Differential Compression
- BITS Server Extension
- WSUS 3.0 SP2
- Report Viewer
- ADK for Windows 8.1
Start up a Windows PowerShell command prompt as an Administrator and run these commands.
Get-Module servermanager
Install-WindowsFeature Web-Windows-Auth
Install-WindowsFeature Web-ISAPI-Ext
Install-WindowsFeature Web-Metabase
Install-WindowsFeature Web-WMI
Install-WindowsFeature BITS
Install-WindowsFeature RDC
Install-WindowsFeature NET-Framework-Features -source \\yournetwork\yourshare\sxs
Install-WindowsFeature Web-Asp-Net
Install-WindowsFeature Web-Asp-Net45
Install-WindowsFeature NET-HTTP-Activation
Install-WindowsFeature NET-Non-HTTP-Activ
Install-WindowsFeature NET-Framework-Features -source \\yournetwork\yourshare\sxs
change "\\yournetwork\yourshare\sxs" to your cd drive where you have the os installation disk. R:\sources\sxs
Make sure that all component are showing as SUCCCESS as an EXIT Code.
Report Viewer
Download and install – here - Microsoft Report Viewer 2010 Redistributable Package
ADK for Windows 8.1
Download and install – here Windows Assessment and Deployment Kit (Windows ADK) for Windows 8.1 Update
Select the default path. Next.
Do not join CEIP. Next.
Accept the License Agreement. Accept.
Install the following components:
- Deployment Tools
- Windows Pre-installation Environment
- User state Migration tool
Install.
Wait for the components to be installed.
Close. :D
Active Directory
- Add the computer account of all your site servers in the SCCM-SiteServers AD group
- Ensure that the group has Full Control on the SYSTEM Container in Active Directory
Local Admin accounts
Add both SCCM computer account and the SCCM Admin account to the local administrator group on the site server.
- SCCM-Admins
- SCCM-SiteServers
Windows Update
Run windows update and patch your server to the highest level.
No comments:
Post a Comment