Microsoft Systems Management Server 2.0 Training Kit

[Previous] [Next]

Before SMS Remote Tools are used, the Remote Tools Client Agent must be installed on computer resources in the site.


After this lesson, you will be able to Estimated Completion Time: 40 minutes

Overview

SMS Remote Tools are designed so that the administrator can give users complete control over who has access to their client computer and when access is possible. Or, SMS Remote Tools allow the administrator to dictate client computer settings and disable reconfiguration by the local user.

Remote Tools settings are grouped into two areas: policy settings and hardware dependent settings. These settings are effective on a site-wide basis.

NOTE


Windows NT Diagnostics are not controlled by the Remote Tools policy settings.

Steps to Using Remote Tools

There are six requirements for monitoring and controlling a client computer using the Remote Tools program:

Configuring the Remote Tools Client Agent

The administrator accesses five tabs in the properties of the Remote Tools Client Agent to configure the agent's behavior.

The General Tab

Settings under this tab allow you to enable Remote Tools. Remote Tools are enabled by default during an Express setup and disabled by default during a Custom setup. This tab also offers the option of requiring client computers to use these settings, rather than allowing users to reconfigure them. This option is not selected by default.

IMPORTANT


Make sure you configure settings on the Advanced tab before installing the Remote Tools Client Agent.

The Security Tab

Settings under this tab allow you to specify which users or user groups can perform remote functions on Windows NT/2000 client computers. This is known as the "permitted viewers" list.

The Policy Tab

Settings under this tab allow you to specify the initial level of remote access—full, limited, or none. Full allows all remote functions and diagnostics to be run. Limited allows you to select individual functions to be run. For example, you can permit remote control but not reboot. None means that the Remote Tools Client Agent can be installed but no feature will be enabled. This is useful if you wish to configure the client computer, but plan to enable remote functions at a later time.

From this tab you also specify whether permission is required from the client computer before a remote function is initiated. If the Remote Tools Client Agent is configured to ask for permission, a user at the client computer sees a message box asking for access. If you must control unattended client computers in a site, do not configure the client agent to request permission.

The Notification Tab

Settings under this tab allow you to specify audible or visual access indicators on the client computer when you attempt to use any utilities in the Remote Tools program. A sound driver must be configured on the client computer for audible notification to function. The Windows 16-bit Remote Tools Client Agent does not support audible notification. Further, the Ping Test utility does not generate a notification sound nor a message box on the client computer when it is run.

NOTE


You may change policy and notification settings from the client computer from the `Clients cannot change Policy or Notification settings' checkbox located under the General tab.

The Advanced Tab

Settings under this tab allow you to adjust the performance of remote functions. Make sure to configure advanced settings before the Remote Tools Client Agent is installed. See the previous section, "Steps to Using Remote Tools" for more information. The following performance settings are configured from the Advanced tab:

Configuring Protocols on Client Computers

The Remote Tools feature requires that the viewing computer and the client computer use the same protocol. Because the viewing computer can start remote sessions using a variety of protocols, make sure that any protocol that will be run on client computers is also loaded on the viewing computer. For example, if TCP/IP runs on some client computers and other client computers only run NETBEUI, make sure to load both protocols on the viewing computer.

The SMS Administrator Console Searches the First Eight Loaded Protocols

When the Remote Tools program in the SMS Administrator console connects to a client computer, it searches through the first eight loaded protocols to find a common protocol for connecting to the Remote Tools Client Agent.

If NetBIOS rather than Windows Sockets is used to establish a remote session, the LANA number for any of the NetBIOS-based transport protocols can be changed. A RAS connection, for example, might be at LANA 8. To find client computers over this LANA number, the administrator would have to modify an existing protocol entry or add a new one to establish a remote session. A time-out value can also be set for each protocol, which might be useful in the event of a slow RAS link.

Remote Control Client Agent Uses the First Loaded Protocol

The client agent does not search for a protocol, but uses the first protocol that was loaded. If the client computer has more than one protocol loaded, you can designate which protocol it will use to establish a remote session. This is necessary, for example, if the client computer has NetBEUI and TCP/IP (NetBEUI loaded first) and the viewing computer has TCP/IP. In this case, the viewing computer can only use TCP/IP, but the client agent uses NetBEUI, which will prevent communications from being established.

To designate TCP/IP as the remote control protocol, the client computer runs the Remote Control Settings tool (RCCLIOPT.EXE), located on the SMS 2.0 installation CD-ROM. This tool and other support tools are discussed in Chapter 14, "Monitoring and Troubleshooting SMS"

Client computers in a WAN environment are supported over TCP/IP or IPX.

Exercise 35: Configuring Site-Wide Remote Tools Settings

In this exercise, you will configure the site-wide settings for the Remote Tools component of SMS 2.0. Do not close the SMS Administrator console after opening it in this exercise, as you will need it to be open in order to complete the remaining exercises in this chapter.

  1. Click the Start button, then point to Programs.
  2. A menu of choices appears.

  3. Point to Systems Management Server, then click SMS Administrator console.
  4. The SMS Administrator console appears.

  5. In the SMS console tree, select the Site Settings node and then select the Client Agents node.
  6. The list of client agents appear in the details pane.

  7. In the details pane, select Remote Tools Client Agent. Then from the Action menu, click Properties.
  8. The Remote Tools Client Agent Properties dialog box displays general settings for the Remote Control Client Agent. Notice the message that the advanced tab settings must be configured before enabling the agent. This does not mean you cannot select the checkbox, but you should configure the advanced settings before the client computer installs the remote tools client agent.

  9. Select 'Enable remote tools on clients,' then select the 'Clients cannot change Policy or Notification settings' checkbox.
  10. Click the Policy tab.
  11. The Remote Tools Client Agent Properties dialog box displays policy settings for the Remote Control Client Agent.

  12. Under 'Level of remote access allowed,' verify that 'Full' is selected.
  13. Under 'Access permission,' verify that `Display a message to ask for permission' is selected.
  14. Click the Advanced tab.
  15. The Remote Tools Client Agent Properties dialog box displays advanced settings for the remote tools client agent.
  16. Under 'Default compression for remote control,' verify that `Automatically select' is listed.
  17. Select 'Install accelerated screen transfer on Windows NT clients,' then click OK.
  18. The SMS Administrator console appears.

In the following steps, you will verify the Remote Tools Client Agent configuration has been updated for the site.

  1. View the contents of D:\CAP_S01\CLICOMP.BOX.
  2. Notice the date and time stamp of REMCTRL.CFG. If you don't see the date and time stamp, from the View menu, choose Details. When this file is updated to the current date and time, the site server has replicated the updates to the client access point (CAP).

  3. View the date and time stamp of CLINTX86.OFR.
  4. When this file is updated to the current date and time, the site server has replicated the updates to the CAP and the client computer can install the Remote Tools Client Agent.

  5. Close the D:\CAP_S01\CLICOMP.BOX window.

Exercise 36: Installing the Remote Tools Client Agent

In this exercise, you will install the remote control component for the Windows NT client computer. Complete this procedure from Computer 2.

  1. Log on to Computer 2 as USER1 with a password of PASSWORD.
  2. In the Control Panel, double-click the Systems Management icon.
  3. The Systems Management Properties dialog box appears.

  4. Click the Sites tab.
  5. The Systems Management Properties dialog box displays the sites of which the local client computer is a member. The only site listed should be S01.

  6. Click Update Configuration, and then click OK.
  7. This will start the site update process, and the Remote Tools Client Agent will be installed.

  8. What directory was added as a result of installing the Software Metering Client Agent?
  9. Answer

  10. Log on as ADMINISTRATOR with no password.

NOTE


If you created a password for your Windows NT administrator account, you will need to use that password.

    In the Control Panel, double-click the Remote Control icon.

    The Remote Control Properties dialog box appears. Notice Administrator settings is listed. Also notice `Full' is designated as the level of control allowed. In the lower left corner of the dialog box, Use administrator settings is listed to indicate these settings are set by the administrator. Also notice that all settings are unavailable, which means the user must use the settings configured by the administrator. Changes cannot be made to these settings because when you configured the global settings for the Remote Tools Client Agent, you selected the `Client cannot change Policy or Notification settings' checkbox.

  1. Click OK.
  2. The Control Panel appears.

  3. Double-click the Services icon, then stop the SMS Remote Control Agent service.
  4. An Alert dialog box appears asking if you are sure you want to stop service.

  5. Select Yes.
  6. The procedure performed in steps 8 to 9 stop the client agent in preparation for Exercise 37.

  7. Close Services, then close the Control Panel.
  8. Log off as ADMINISTRATOR, then log on as USER1 with a password of PASSWORD. Make sure not to shut down Computer 2, as this will restart the SMS Remote Control Agent service.

Категории