Intel vPro® Platform
Intel Manageability Forum for Intel® EMA, AMT, SCS & Manageability Commander
2783 Discussions

Issue provisioning machines with AD integration

rjard
Beginner
‎05-23-2016 09:28 PM
1,125 Views

Hi All,

I have run into some issues getting AD integration working. This is what I have done so far:

-Purchased certificate from comodo.

-Setup a server installed SCS 11.0.0.214 and MS SQL.

-Setup a basic profile and configured machines with ACUconfig. Machines show up in the console and are able to be managed. Everything just worked.

-Then I setup a profile with AD integration. Gave the service account access to the OU where the objects will be created per this article(/community/itpeernetwork/vproexpert/blog/2015/03/18/tightening-up-intel-scs-service-account-permissions-for-managing-intel-amt-computer-objects-in-microsoft-active-directory https://communities.intel.com/community/itpeernetwork/vproexpert/blog/2015/03/18/tightening-up-intel-scs-service-account-permissions-for-managing-intel-amt-computer-objects-in-microsoft-active-directory). The service account is a local administrator on the client machine and the service account is an administrator on the server.

When I export the profile (specifying the service account as the account) and run it with ACUConfig I get the following output:

2016-05-24 14:16:04:(INFO) : ACU Configurator , Category: HandleOutPut: Starting log 2016-05-24 14:16:04

2016-05-24 14:16:05:(INFO) : ACU Configurator, Category: : ACUConfig 11.0.0.214

2016-05-24 14:16:05:(INFO) : ACU Configurator, Category: -Unknown Operation-: CJMCHY1.domain.edu.au: Starting to configure AMT...

2016-05-24 14:16:21:(INFO) : localhost, Category: AMT Interface : Wire support:************** 1

2016-05-24 14:16:28:(ERROR) : 4C4C4544-004A-4D10-8043-C3C04F485931, Category: ADInterfaceInternal error: pSdoMachine->GetUserSDO (\\domaincontroller) failed with error 2147943717.

2016-05-24 14:16:29:(INFO) : localhost, Category: AMT Interface : Wire support:************** 1

2016-05-24 14:16:52:(SUCCESS) : ACU Configurator, Category: Exit: ***********Exit with code 0. Details: Success.

The machines do not show up in the SCS console, I can get to the machine through the webui but I cannot login with any account. The AD accounts are created in the OU.

Is there anything I should be checking? Please help

-Ross

0 Kudos

Link Copied

0 Replies
Reply

Community support is provided during standard business hours (Monday to Friday 7AM - 5PM PST). Other contact methods are available here.

Intel does not verify all solutions, including but not limited to any file transfers that may appear in this community. Accordingly, Intel disclaims all express and implied warranties, including without limitation, the implied warranties of merchantability, fitness for a particular purpose, and non-infringement, as well as any warranty arising from course of performance, course of dealing, or usage in trade.

For more complete information about compiler optimizations, see our Optimization Notice.