We have 3 separate Orion Environments (Dev, QA, and Production), and whenever I run the upgrade installer or look in the "My Orion Deployment" section of the web console, all of the environments complain that they can not detect the .Net version on the Scalability Engines (Additional Polling Engines and Additional Web Servers). They all run Windows Server 2016. The Remote Registry service is running on all of the APE's and AWE's.
The issue seems to be that for upgrades and installs, we use a local (non AD) admin account to run the installer, which is recommended by the Admin guide. I'm guessing that the local non-AD account can't read the remote registry's of the remote engines. If I use an AD account (and the AD account I use does have local admin privileges), it can detect the .Net version on the remote polling engines, but then I get a warning from the SolarWinds installer about using a "Domain Admin Account" with the resolution being to use a local non-domain account. So it's kind of a damned if you do, damned if you don't situation going on.
I imagine the solution is to somehow give the primary polling engine's machine account rights to read the remote registry on all of the polling engines, but I'm not sure if that would work and how to go about that. Anyone have some advice on how to resolve this once and for all? I'm tired of seeing this constant warning.
UPDATE:
So I fixed the issue with the Installer message by simply going on the Additional Polling Engines, accessing the registry, finding the winreg key under HKLM:\SYSTEM\CurrentControlSet\Control\SecurePipeServers\winreg, and setting the permissions for winreg to include the account name of the account used on the primary server (the same account exists on each of the APE's as well), giving it read access. I then restarted the Remote Registry service on each APE/AWS.
However, this doesn't fix the issue in the "My Orion Deployment" section. Under "My Orion Deployment"'s "Deployment Health" page, I still see the "Check Mismatched MS Updates" warning for every APE and AWS machine, saying it can't find the .Net Version, the OS Version, or the System.Runtime.Serialization.dll or mscorlib.dll versions. I understand I can just silence those checks, but that just isn't a good solution in my mind because that is simply hiding the issue, not solving it.
Is there anyone who's figured out how to fix this yet? Or maybe someone from SolarWinds can respond and let us know how to fix this? There's got to be some security settings or permissions that need to be set to allow this to work properly.
YET ANOTHER UPDATE:
I was able to clear the "Can't detect .Net Versions" from the "Check Mismatched MS Updates" error message under "Deployment Health". I did this by editing the same "winreg" permissions in the registry that I mentioned above and adding the Primary Polling engine's machine account and the local Authenticated Users account with Read Only permissions.
However, I am still getting the other error messages about not being able to detect OS versions or those .dll version files I mentioned above. Not sure how to fix those... I would still appreciate any help from somebody that might know how to fix this.
Here is a screenshot showing the remaining errors:
