You cannot install the Systems Management Server 2.0 client on an SMS logon point (835852)


The information in this article applies to:

  • Microsoft Systems Management Server 2.0 SP5

SYMPTOMS

You may not be able to install the Microsoft Systems Management Server (SMS) version 2.0 client on an SMS logon point. This symptom may occur if the following conditions are true:
  • You are running SMS 2.0 Service Pack 5 (SP5).
  • You are trying to install SMS 2.0 client components on a domain controller that is also an SMS logon point.
  • You are trying to install SMS 2.0 client components by using a non-domain administrator SMS Service account.
  • You are trying to install SMS 2.0 client components and no SMS Client Remote Installation account is defined.

CAUSE

This behavior occurs because you can install logon points without domain administrator permissions in SMS 2.0 SP5. However, local administrator rights are required to push the SMS 2.0 client to a computer. By default, if an SMS Client Remote Installation account has not been defined, the SMS Service account credentials are used to push the SMS 2.0 client components. If your site has been configured to use an SMS Service account without domain administrator permissions, the SMS 2.0 client installation may fail.

WORKAROUND

To work around this behavior, create an SMS Client Remote Installation account that has administrator permissions. You must create this account on the logon point servers where the SMS 2.0 client is to be installed. To create an SMS Client Remote Installation account that has administrator permissions, follow these steps:
  1. Click Start, point to Programs, click Systems Management Server, and then click SMS Administrator Console.
  2. In the SMS Administrator Console, expand Site Database, and then expand Site Hierarchy
  3. Right-click SiteCode - SiteName, and then click Properties.
  4. In the SiteCode - SiteName Properties dialog box, click the Accounts tab.
  5. On the Accounts tab, click New under SMS Client Remote Installation accounts.
  6. In the Windows NT Account dialog box, add a user account and password or a group account and password.

    Note The acount that you add must have local administrative permissions on the logon points. For example, the Domain Administrators group has local administrative permissions on all computers in the domain.
  7. Click OK to add the account, and then click OK to save your changes.

STATUS

This behavior is by design.

MORE INFORMATION

For additional information about Windows logon installations, click the following article number to view the article in the Microsoft Knowledge Base:

816292 Windows logon installation requires domain administrator permissions to create logon points

Modification Type:MajorLast Reviewed:6/28/2004
Keywords:kbprb KB835852 kbAudEndUser kbAudITPRO
©2004 Microsoft Corporation. All rights reserved.