Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations strongm on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

SMS w/SUS - synch host without pass through proxy

Status
Not open for further replies.
mnt25

mnt25

IS-IT--Management
Sep 10, 2003
50
US
Hello Everyone,

I have a problem regarding the configuration of my synchronization host. During the initial Security UPdate Inventory tool installation, i got errors that the download failed, please go to bla bla for more information. It appears that our websense tool always will prompt user credentials when trying to access the web. There is NO firewall policy allowing http traffic to be automatically authenticated to the internet. We would like the synchronization host to run in an unattended, behind the scecnes fashion (like its designed to do).

After doing much research, i located a workaround which required me to create a file called SMSPatchDownloader.ini in the %windir% directory with the following three lines:

[PatchDownloader]
Username =
Password =

THis file allows the syn host to use the specified credentials to access the internet. This in itself is a security risk to me but regardless i have not gotten it to work with this solution.

IF anyone has gotten this workaround specified in the help files to work, please let me know. If you have another solution which you are using to combat this, please let me know as well. Any advice is appreciated and welcomed.

Thanks,
Matt
 
Sort by date Sort by votes
Are you sure the failure message you received was caused by Websense? Were you not logged in at the time the installation occurred?

Any chance you can provide the exact error message you get?

Tim
 
Upvote 0 Downvote
Matt,

I haven't gotten this to work but have a similar situation at my company. Creating the ini would be too much of a risk from a security prospective.

What I do, is download the MSSECURE.cab database from Microsoft on my desktop. Then I map a drive to the SMS site server and overwrite the existing file with the new one.

Sure, its a manual process, but it works very nicely. If you figure out how to bypass the proxy, let me know.

-later

Joseph L. Poandl
MCSE 2000

If your company is in need of experts to examine technical problems/solutions, please check out (Sales@njcomputernetworks.com)
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

disturbedone
  • Locked
  • Question
Win10 20H2 BitLocker SCCM
Replies
0
Views
199
disturbedone
disturbedone
JeannieLCFPD
  • Locked
  • Question
Does SCCM 2012 R2 have File Integrity Monitoring for compliance with PCI
Replies
0
Views
174
JeannieLCFPD
JeannieLCFPD
wmcalin
  • Locked
  • Question
SMS
Replies
0
Views
145
wmcalin
wmcalin
disturbedone
  • Locked
  • Question
SCCM2012 WiFi configuration WPA2-Enterprise not connecting
Replies
2
Views
198
jakob314
jakob314
morefays
  • Locked
  • Question
SMS Server Slient Installation Issue
Replies
0
Views
145
morefays
morefays

Part and Inventory Search

Sponsor

Back
Top