In this post we will see the steps for Installing Prerequisites for Configuration Manager. We will also see the steps to create a system container, assign permissions for SCCM server on the container and extend the active directory schema.
In my previous post I talked about the new features of Configuration Manager and the system requirements for installing configuration manager 2012 R2. Before you can install Configuration Manager you should extend your Active Directory and give your SCCM server rights to create objects under the system container in AD.
Does Configuration Manager creates System Container automatically ? – Configuration Manager does not automatically create the System Management container in Active Directory Domain Services when the schema is extended. The container must be created one time for each domain that includes a Configuration Manager primary site server or secondary site server that publishes site information to Active Directory Domain Services.
Creating the System Management Container
We will first create the system management container and assign the SCCM server permissions to create objects under the system container.
The domain controller is running on windows server 2012 R2 DataCenter edition operating system. To create a container log on to the Domain controller with administrator account, click on Server Manager, Tools, click on ADSI Edit.
Right click ADSI Edit and click on Connect to. On the Connection Settings window, the naming context should be Default naming context. Do not change anything here, click on OK.
In the ADSI Edit Console, expand the Default Naming Context, right click CN=System, click on New and create an Object.
On the Create Object windows, select the class as container and click on Next.
Provide the value as System Management. Click on Next and click on Finish to close the wizard.
Now that we have created the system management container, we must grant the site server’s computer account the permissions that are required to publish site information to the container. The primary site server computer account must be granted Full Control permissions to the System Management container and all its child objects.
Click on Server Manager, click on Tools, click on Active Directory Users and Computers. Click on View and click Advanced Features. Expand System, right click System Management and click on Delegate Control.
The primary site server computer account must be granted Full Control permissions to the System Management container. Click on Add, on select users,computers or groups window click on Object Types and check for Computers as object types. Click on OK. Type the name of the primary site server computer account and click on OK.
You must see the primary site server computer account listed under the users or groups. Click on Next.
On the Tasks to Delegate page, click on Create a custom task to delegate. Click on Next.
On the Active Directory Object Type window, select the option This folder, existing objects in this folder and creation of new objects in this folder. Click on Next.
We need to select the permissions to delegate, choose General, Property Specific and Creation/deletion of specific child objects. Under the permissions, click on Full Control.
When you check the box for Full Control all the other permissions gets checked automatically. Click on Next and click on Finish to close the wizard. We have delegated full permissions to primary site server computer account on System Management container.
Extending Active Directory Schema
To extend the Active Directory Schema using extadsch.exe utility, locate the extadsch.exe which can be found in SMSSETUP\BIN\X64 of the configuration manager setup DVD. Hold the shift key on your keyboard and right click extadsch.exe and click on Copy as Path.
Launch the command prompt. Right click and click paste and hit enter. You should see the line Successfully extended the Active Directory Schema.
To verify whether schema extension was successful, open the log file extadsch.log located in the root of the system drive. You should see the line Successfully extended the Active Directory Schema.
Installing Prerequisites for Configuration Manager
After creating system management container, assigning site server computer permissions on container, extending active directory schema we will now start installing prerequisites for configuration manager. I will be listing out the download links for all the prerequisites at the end of this post.
On the SCCM server, click on Server Manager, click on Manage, click on Add Roles and Features. Click on Select a server from the server pool and click on Next.
Select Web Server (IIS) as the server role and click on Next.
You need to enable the following features for installing configuration manager 2012 R2 on Windows server 2012 R2
- .Net Framework 3.5 Features [Install all sub features]
- .Net Framework 4.5 Features [Install all sub features]
- Remote Differential Compression
Note :- Microsoft lists the prerequisites that are required by Configuration Manager for each site system role on supported operating systems prior to Windows Server 2012 and for Windows Server 2012.
Once you select the features listed above, click on Next.
Install the following Roles Services and click Next.
- Common HTTP Features – Default Document, Static Content.
- Application Development – ASP.NET 3.5, .NET Extensibility 3.5, ASP.NET 4.5, .NET Extensibility 4.5, ISAPI extensions.
- Security – Windows Authentication.
- IIS 6 Management Compatibility – IIS Management Console, IIS 6 Metabase Compatibility, IIS 6 WMI Compatibility, IIS Management Scripts and Tools.
If the installation of roles services needs the windows server 2012 installation media click on Specify an alternate source path and provide the path as D:\Sources\sxs (where D is the drive letter where the Windows Server 2012 R2 media is mounted).
Windows Assessment and Deployment Kit (Windows ADK) for Windows 8.1
The Windows Assessment and Deployment Kit (Windows ADK) is a collection of tools that you can use to customize, assess, and deploy Windows operating systems to new computers. The latest version out there is ADK 8.1 and you can find the download links at the end of the post.
Download the adksetup.exe, right click on the file and click on Run as Administrator. On the Specify Location page, choose the install path. Click on Next.
Click No for Join the Customer Experience Improvement Program. Click on Next.
On the License Agreement page, Click on Accept.
Select Deployment Tools, Windows Preinstallation Environment and User State Migration Tool. Click on Install.
We have installed the Windows Assessment and Deployment kit for Windows 8.1. Click on Close.