• State Not Answered
  • Locked Locked
  • Replies 6 replies
  • Subscribers 21 subscribers
  • Views 365 views
  • Users 0 members are here
Options
Related
This discussion has been locked. The information referenced herein may be inaccurate due to age, software updates, or external references.
You can no longer post new replies to this discussion. If you have a similar question you can start a new discussion in this forum.

Installing configmgr extension pack

solarwinds-admin

Currently we have 1 central site and 4 child primary site. The child sites are regionalized. We have WSUS install on all site servers but only the central site goes out to internet to get windows update. Patches are then roll down to child primary sites. When i installed SCUP for configmgr, We install SCUP on the central site and we publish the 3rd party patches from the central site and let it roll down to the child site.  I would like each child site to be able manage their own 3rd party patches deployment but also at the same time control by central site what 3rd party patches are available for the child sites. In a setup like this where should i install the configmgr extension pack?  Do i need to install EP at each location where i have a site server/wsus?

Is it not recommended to install EP on a site server?

Thanks.

  • 0

    The primary Extension Pack server will be installed in the Central Site and configured to publish 3rd party updates to your upstream (Internet-connected) WSUS server. The content will then replicate to the downstream WSUS server using WSUS synchronization -- just like it occurs when using SCUP. You do not need to install an ExtPack server at the child sites for publishing. The ExtPack server can be installed in a number of configurations in a Configuration Manager environment, but whether one configuration or another is desirable depends on how the Extension Pack will be used. If the ExtPack will only be used for managing and publishing 3rd party updates to the upstream server, then installation on your existing SITE/WSUS server is an acceptable solution; however, if you anticipate using any of the WMI-based client management tools that are available in the ExtPack, then you would need to either deploy additional Automation Role servers to remove that workload from the SITE/WSUS server, or deploy the ExtPack server to a separate machine. For more detailed discussion of possible deployment scenarios, and a discussion of the pros/cons of co-locating the ExtPack on the Site Server, please see the Extension Pack Deployment Guide.

  • 0 in reply to solarwinds-admin

    How does the workstations know which AR to report to?

  • 0 in reply to solarwinds-admin

    In the Extension Pack environment, the clients do not report to the Extension Pack. The Extension Pack initiates a WMI connection to a target system and requests, via WMI, whatever Inventory information has been configured. From the Extension Pack, the desired machines are selected, either by name, or by a container in which they are a member.

    For the WSUS server, the client works exactly like it does without the Extension Pack. The WUAgent is configured via policy and communicates with the WSUS server it is assigned to use.

    The Automation Role server is directed by the Extension Pack server to initiate a WMI connection based on one or more rulesets that are defined in the Extension Pack. These rules can be based on domain, workgroup, WSUS server, computer name, or IP subnet, most often by IP subnet when site-based Automation Role servers are involved.

  • 0 in reply to solarwinds-admin

    Under management groups -> Automation server routing Rules. If i add a "configmgr site server rule" by adding the child primary site to an Automation server will the clients reporting to that child primary all report to the Automatiion Server  with inventory? Or does Inventory ends back in the Primary Application server?

  • 0 in reply to solarwinds-admin

    The "Site Server" and "WSUS Server" rules only manage traffic targeted specifically to the site server or the WSUS server.

    To assign an Automation Server to an entire "Site" of computers, you'll need to identify how that site is defined -- by domain, orgUnit(s), or (most typically) by IP Subnet. Then create one or more of those rule types (domain, orgUnit, IPSubnet) to assign those targets to a specific Automation Role server.

    Again, as previously noted, it is important to understand that the clients do not initiate any communications at all. All connectivity is initiated by the Extension Pack, through the Automation Role server; however Inventory is not a feature of the Configuration Manager Extension Pack.

    If you have enabled both Extension Packs in your trial, it is important to understand which features are available in the WSUS Extension Pack as compared to which features are available in the Configuration Manager Extension Pack, and in what environment you wish to use the Extension Pack.

SolarWinds solutions are rooted in our deep connection to our user base in the THWACK® online community. More than 195,000 members are here to solve problems, share technology and best practices, and directly contribute to our product development process.

SolarWinds Customer Success Center Certification Media Vault Link Accounts
About THWACK Blogs For Government Edit Settings Free Tools & Trials
Legal Documents Terms of Use Privacy California Privacy Rights Security Information
©2024 SolarWinds Worldwide, LLC. All Rights Reserved.