Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
Question
Saturday, June 18, 2016 5:29 AM
Hi All,
I need assistant on this.
Let me describe about my environment, i have 1 cas , 1 primary and 3 secondary sites. When i checked at database replication at Primary Site found that at parent site the Firewall ports are in 'RED'.
Proceeded checking SMS_HIERARCHY_MANAGER and error message captured below
"Hierarchy Monitoring detected that the ConfigMgr SQL Server <FQDN> ports 1433,4022, are not active on Firewall exception."
Fyi, i`m running on SCCM 2012 R2 and please take note i facing this issue recently
Things i have done
1. I have created exception rule for 1433 and 4022 but the issue still persists..
2. Telnet from all sites , can able to connet
3. Windows Firewall OFF.
Regards,
Muru
All replies (9)
Saturday, June 18, 2016 10:01 AM ✅Answered
I don't think this has ever been resolved tbh. I know Garth blogged about the annoyance http://www.enhansoft.com/blog/turning-off-the-windows-firewall-warning-message-in-configuration-manager-2012 and also raised a Connect bug about it. It's marked as resolved but looking at the comments I don't think it has been. If you sign up for Connect and join the Microsoft System Center Configuration
Manager & Intune Connect Portal you'll be able to view the comments and try out what is suggested. https://connect.microsoft.com/ConfigurationManagervnext/feedback/details/1045929
Garth suggested the following:
'Can we please get a Registry key setup to prevent this message from being generated. This cause the CM12 site to always be in a warning state, when the firewall is disabled. Thereby making the making the site stat useless!
SMS_HIERARCHY_MANAGER reports (Message ID=3353):
"Hierarchy Monitoring detected that the ConfigMgr SQL Server <fqdn> ports 1433,4022, are not active on Firewall exception."
I suggest that following:
Under the following Registry key:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SMS\Components\SMS_HIERARCHY_MANAGER
Create a Dword value called: IgnoreSQLFirewallPorts
When this value is set to 1 , the above message will never be generated.'
Cheers Paul | http://sccmentor.wordpress.com
Saturday, June 18, 2016 12:41 PM ✅Answered
This has been fixed in CMCB 1606 but will not be fixed in CM12.
Your only solution is to setup an rule to ignore the event. http://www.enhansoft.com/blog/how-to-create-a-status-filter-rule-to-prevent-component-status-from-entering-a-warning-or-error-state
Garth Jones
Blog: http://www.enhansoft.com/blog Old Blog: http://smsug.ca/blogs/garth_jones/default.aspx
Twitter: @GarthMJ Book: System Center Configuration Manager Reporting Unleased
Saturday, June 18, 2016 12:37 PM
Thanks for your reply Paul.
i created a value and get revert to you is the problem resolved.
Saturday, June 18, 2016 2:15 PM
Thanks for that Garth. I remember reading that but forgot to link to it.
Cheers Paul | http://sccmentor.wordpress.com
Wednesday, January 18, 2017 3:00 PM
Interesting thread. I see that the problem is allegedly fixed in 1606, but my lab environment is on 1610 and the problem is occurring. Anyone else on 1610 still experiencing this issue?
-Tony
Monday, June 12, 2017 6:07 PM
My environment is on 1610 and I'm getting the same issue.
Tuesday, August 22, 2017 7:36 AM
I'm on 1702 and the problem persists.
Tuesday, August 22, 2017 10:52 AM
I'm on 1702 and the problem persists.
you need to open a case with CSS on this. it should be fixed.
Garth Jones
Blog: http://www.enhansoft.com/blog Old Blog: http://smsug.ca/blogs/garth_jones/default.aspx
Twitter: @GarthMJ Book: System Center Configuration Manager Reporting Unleased
Tuesday, August 22, 2017 11:03 AM
Hi Garth,
I just realised that I hadn't opened up the firewall ports. Doh....
All OK now.
Thanks!