You can always test it manually for port and access: https://social.technet.microsoft.com/wiki/contents/articles/4966.scom-2012-troubleshooting-unixlinux-agent-discovery.aspx https://social.technet.microsoft.com/wiki/contents/articles/19527.scom-2012-r2-manually-installing-and-troubleshooting-linuxunix-agents.aspx
winrm enumerate http://schemas.microsoft.com/wbem/wscim/1/cim-schema/2/SCX_Agent?__cimnamespace=root/scx Jump -r:https://15.250.250.228/ Jump :1270/wsman -auth:basic -skipCACheck -skipCNCheck -encoding:utf-8 -format:pretty -username:opsuser Change IP address and username From: [email protected] [mailto:[email protected]] On Behalf Of Pete Hakesley Sent: Friday, March 31, 2017 4:49 AM To: [email protected] Subject: [msmom] RE: Cross PLatform in a DMZ Hi Kevin, Yes, the GW(s) are the only members of the Resource Pool. I will setup the hosts file on the client. I already have the hosts file configured on the GW's Also now thinking about IPTABLES being the culprit as 1270 would not be defined as a regular port - getting the Red Hat Team checking that for me. Peter Hakesley | Monitoring & Automation Technical Lead Engineer, Data Centre Services t: +44(0)845 155 6556 ext: 4006 e: [email protected]<mailto:[email protected]> | w: www.scc.com<http://www.scc.com/> a: SCC, CV1, Cole Valley, 20 Westwood Avenue, Tyseley, Birmingham B11 3RZ From: [email protected]<mailto:[email protected]> [mailto:[email protected]] On Behalf Of Kevin Holman Sent: 30/March/2017 15:32 To: [email protected]<mailto:[email protected]> Subject: [msmom] RE: Cross PLatform in a DMZ Are your GW machines the ONLY members of the resource pool? You need a dedicated resource pool for the GW based pool. Then discover these machines and assign to that pool. Working DNS is often a requirement, so the Linux machines likely need name resolution to the GW as well, via host file if there is no DNS. From: [email protected]<mailto:[email protected]> [mailto:[email protected]] On Behalf Of Pete Hakesley Sent: Thursday, March 30, 2017 2:08 AM To: [email protected]<mailto:[email protected]> Subject: [msmom] Cross PLatform in a DMZ All, I have been using Kevin Post about cross platform agents: https://blogs.technet.microsoft.com/kevinholman/2012/03/18/deploying-unixlinux-agents-using-opsmgr-2012/ I have the following setup all SCOM 2012 R2 CU9 5 Management Servers 2 Gateway Servers for Linux in a WORKGROUP DMZ (no trusts or DNS) A Number of Red Hat Linux Servers in a DMZ. Q: Do I need to add the xplat certificate to all MS servers and GW servers Q: What machines need to be in the 'UNIX LINUX Resource Pool' I have put the IP and FQDN names of the LINUX machines on the gateway hosts file. I can putty from the GW's to the Linux boxes and sudo - without issue. IP Tables is not stopping the ports. Note: There are firewalls and TCP 1270 and SSH have been allowed GWs-->Clients When I try to discover using 'UNIX LINUX Resource Pool' with the GWs defined, the runas account details for discovery; discovery fails with [ServerName] [IPAddress] Unreachable Peter Hakesley | Monitoring & Automation Technical Lead Engineer, Data Centre Services t: +44(0)845 155 6556 ext: 4006 e: [email protected]<mailto:[email protected]> | w: www.scc.com<http://www.scc.com/> a: SCC, CV1, Cole Valley, 20 Westwood Avenue, Tyseley, Birmingham B11 3RZ
