Unable to do automated push an agent to some new computers in environment. Getting "Failed to open the Service Console Manager on ..." We are able to do a push to the same machines manually through the top "Install Agent".
ITMS 8.0, 8.1, 8.5
Failed to push the Symantec Management Agent to: 'machinexxxx.domain' (cb70d525-10ac-42e6-aa24-d6402c766a22 / 9564c96d-dc95-07cd-7d8c-a8b5632a586b)
Failed to open the Service Console Manager on machinexxxx. Return value=0, Error:800706ba
[System.Runtime.InteropServices.COMException @ Altiris.NS]
at Altiris.NS.Utilities.RemoteServiceMgr.OpenSCManager(String sMachineName, Boolean bFirstTime)
at Altiris.NS.Utilities.RemoteServiceMgr.QueryServiceStatus(String sMachineName, String sServiceName)
at Altiris.NS.Utilities.ClientPushMgr.DoPush(PushAgentToComputersData data, DiscoveredMachineInfo dmi, String connectionName)
at Altiris.NS.Utilities.ClientPushMgr.DiscoveryAndPush(PushAgentToComputersData data, AgentPushDataWindowsRow row, ParallelLoopState state)
COM Exception errcode: 0x6BA
This is caused by a difference in input processing between manual and schedule run. In both cases machines are discovered identically. - during manual push, remote OpenSCManager is called with client fqdn (for particular case it is machinexxxx.domain.com) - during scheduled call with machine name (for particular case it is machinexxxx)
Some scenarios need to enforce the use of FQDN for PUSH connection.
A new customSetting has been created (starting with 8.0 HF6 and later) to enforce the connection string to resolve the real machine: key="AgentPushPreferFqdn". Default value = 0
The core setting is used to force FQDN instead of netbios for access.
Just set it to be "1" (AgentPushPreferFqdn) in the CoreSettings.config (under c:\programdata\symantec\smp\settings) on your SMP.
Note: Please understand that we rely on having the RPC server is available and properly configured in your environment. In some situations you may need to troubleshoot this "The RPC server is unavailable. (Exception from HRESULT: 0x800706BA)" with your network team.
Even after enabling the mentioned coresetting above, the agent push may still fail the same way. In the NS logs you may see this warning:
(ClientMachine316813.domain.com) Intermediate discovery failures: WMI, NetAPI, Registry (NetAPI) Failed to retrieve name/domain: API error with HRESULT: 0x00000035 (WMI) Failed to retrieve name/domain: The RPC server is unavailable. (Exception from HRESULT: 0x800706BA) (Registry) Failed to retrieve name/domain: The network path was not found. ----------------------------------------------------------------------------------------------------- Date: 4/9/2019 10:42:36 AM, Tick Count: 37212234 (10:20:12.2340000), Size: 577 B Process: AeXSvc (5068), Thread ID: 69, Module: Altiris.NS.dll Priority: 2, Source: DiscoverMachines.All
In order to validate that you have a network/configuration issue, you could try for example to connect to 'Services' (using Connect to another computer ... option under the Services Console) from your SMP server to one of the affected machine. If you get "Error 1722: The RPC server is unavailable" on the same machines that we are failing to push, then you need to troubleshoot the RPC service on those client machines.
Some suggestions around this issue are the following:
Make sure that the following services are running on the Target Machines: