Share via

ccmsetup not installing client on DMZ server

JessicaP_83 26 Reputation points
2022-02-25T12:24:23.867+00:00

Dear fellow forum members, I have been trying to install the ccm cleint on a DMZ server and need some advise. Ran the commandline ccmsetup on a DMZ server but nothing gets installed. The error code is ccmsetup failed with error code 0x87d0027e. Checked the boundary range in place, silverlight installed but nothing working.

Microsoft Configuration Manager
0 comments

6 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Sherry Kissinger 4,131 Reputation points
    2022-02-25T14:46:21.48+00:00

    As a DMZ environment, I'm guessing that there are (or I hope there are) firewalls or routers or other security things in place to most definitely wall your DMZ off from your production environment.

    There are possibly some ports which will need to be opened up in those firewalls/routers to allow for communication to the CM Servers from your DMZ to production environment.

    Have you, and your network team, reviewed the ports needed: https://learn.microsoft.com/en-us/mem/configmgr/core/plan-design/hierarchy/ports

    You might need to engage your network team to use some sort of 'sniffing' tool to see what ports the client is attempting to use to communicate, and failing, so they know which ones to allow traffic over. Make sure you and they document, document, document which ones are needed in YOUR environment... because most likely "one day" you might have to add or replace servers, and different ip addresses would need to be allowed for traffic.

    0 comments
  2. JessicaP_83 26 Reputation points
    2022-02-25T15:55:44.72+00:00

    Thanks @Sherry Kissinger . I have checked already the required ports are open and accepting connections. Also i created inbound and outbound fw rules to allow communication.
    The command line is not even installing the client so is there any other place where i can check for logs to see what is blocking the msi?

    0 comments
  3. Sherry Kissinger 4,131 Reputation points
    2022-02-25T18:31:37.357+00:00

    there are multiple logs, usually created in %windir%\ccmsetup\logs. I know you said "The error code is ccmsetup failed with error code 0x87d0027e" ; but there are other logs to look at, is it ccmsetup.log with that? the msi.log with that error? one of the other prerequisites failing? There are multiple logs to look at, in that area, which might have more details to help narrow down what exactly it is failing on.

  4. Sherry Kissinger 4,131 Reputation points
    2022-02-28T17:36:49.197+00:00

    You might need to open a case with Microsoft; but I can try again; when you say "logs say CCMsetup failed with an error code of 0x80004005", which log file?

    and if memory serves, 80004005 is kind of a generic "access denied" type of message. Earlier in that log, does it say to "what" it doesn't have access?

  5. Sherry Kissinger 4,131 Reputation points
    2022-02-28T18:36:56.893+00:00

    I have never looked at logs in c:\windows\ccmcache. I didn't even realize there might be logs in c:\windows\ccmcache.

    Have you looked at c:\windows\ccmsetup\logs ?