Wiki source code of Checkliste zum Setup

Last modified by Sabrina V. on 2025/07/18 07:04
Show last authors
1 {{aagon.priorisierung}}
2 40
3 {{/aagon.priorisierung}}
4
5 {{aagon.floatingbox/}}
6
7 In the following you will find some settings that you should consider for a smooth installation and error-free start of ACMP. In addition, the [[system requirements>>doc:ACMP.67.Allgemeines zum ACMP.Systemvoraussetzungen.WebHome]] will help you to set up a suitable environment for the ACMP components. Please pay attention to the following configurations:
8
9
10 = Ports =
11
12 During operation, ACMP uses different ports to communicate with the different networks.
13
14 |**Use**|**Port**|**Description**
15 |Client -> Server|2106|The Client logs on to and connects to the Server via this port.
16 |Server -> Client|2108|This port is used to push jobs from the Server to the Clients.
17 |Client -> IIS (Server)|80/443|This port is used for communication between the Client and the Server when using the Helpdesk and Web Interface.
18
19 {{aagon.infobox}}
20 These are standard ports, the used ports can be found in the Settings.ini from the ACMP network share of the ACMP Server (Port 2106 (Server Port), 2108 (Client Port) (TCP).
21 {{/aagon.infobox}}
22
23 (% class="wikigeneratedid" %)
24 Furthermore, you will need the following ports for [[agent installation>>doc:ACMP.67.Arbeiten mit der ACMP Console.Clients erfassen.ACMP Agenten installieren.Häufige Fehlermeldungen.WebHome]] or OS Deployment ([[Network Boot Service>>doc:ACMP.67.ACMP-Solutions.OS Deployment.Network Boot Service.WebHome||anchor="HErrormessagesduringRolloutviatheNetworkBootService"]]):
25
26 **Agent installation (via the console)**
27
28 |(% style="width:246px" %)**Utilisation**|(% style="width:1446px" %)**Port**
29 |(% style="width:246px" %)RCP|(% style="width:1446px" %)135 (TCP/UDP)
30 |(% style="width:246px" %)SMB/CIFS|(% style="width:1446px" %)137 – 139, 445 (TCP/UDP)
31
32 **Network Boot Service**
33
34 |(% style="width:242px" %)**Utilisation**|(% style="width:1450px" %)**Port**
35 |(% style="width:242px" %)DHCP|(% style="width:1450px" %)67, 4011 (UDP)
36 |(% style="width:242px" %)TFTP|(% style="width:1450px" %)69 (UDP)
37
38 {{aagon.infobox}}
39 For the [[ACMP consoles to communicate>>doc:ACMP.67.ACMP-Solutions.System.WebHome]], you can then enable an alternative server port.
40 {{/aagon.infobox}}
41
42 = Required URLs =
43
44 ACMP uses external resources in its daily work. These may affect the whole ACMP or only certain solutions. Add the following URLs to your environment (firewall, browser, etc.) as trusted:
45
46 |**Solution**|**URL**|**Description**
47 |All services hosted by Aagon|https:~/~/*.aagon.com|If possible, you should set up a wildcard network share for aagon.com so that the hosted services can function without problems.
48 |ACMP General|[[https:~~/~~/acmpupdate.aagon.com>>url:https://update.aagon.com/]]|(((
49 This URL is needed for the following areas:
50
51 * For the ACMP Updates
52 )))
53 |ACMP Licence|[[https:~~/~~/acmplicense.aagon.com>>url:https://acmplicense.aagon.com]]|This URL is required to enable the download and synchronisation of the licence information.
54 |ACMP Vulnerability Management|[[https:~~/~~/update.aagon.com>>url:https://update.aagon.com/]]|This URL is required to download the ACMP Vulnerability Management definition files.
55 |ACMP CAWUM / Windows Update Management|[[https:~~/~~/sws.update.microsoft.com>>url:https://sws.update.microsoft.com/]]|This URL is used when licensing ACMP CAWUM to download additional updates from Microsoft.
56 | |[[http:~~/~~/www.catalog.update.microsoft.com>>url:http://www.catalog.update.microsoft.com/]]|(((
57 You can use this URL to access a list of Microsoft hosts from which the updates are downloaded.
58 )))
59 | |[[https:~~/~~/docs.microsoft.com/en-us/windows-server/administration/windows-server-update-services/deploy/2-configure-wsus>>url:https://docs.microsoft.com/en-us/windows-server/administration/windows-server-update-services/deploy/2-configure-wsus]]|You can use this URL to download additional updates for Microsoft 365 applications.
60 | |[[https:~~/~~/config.office.com>>url:https://config.office.com]]|Additional updates for Microsoft 365 apps can be downloaded via this URL.
61 | |[[https:~~/~~/clients.config.office.net>>url:https://clients.config.office.net]]|Additional updates for Microsoft 365 apps can be downloaded via this URL.
62 | |[[http:~~/~~/timestamp.digicert.com>>url:http://timestamp.digicert.com]]|Required for countersigning the downloaded third-party setups.
63 | |[[https:~~/~~/hpia.hpcloud.hp.com>>url:https://hpia.hpcloud.hp.com/downloads/sccmcatalog/HpCatalogForSms.latest.cab]]|Is required to download the driver third-party catalogs for HP devices
64 | |[[https:~~/~~/download.lenovo.com>>url:https://download.lenovo.com/luc/v3/LenovoUpdatesCatalogv3.cab]]|Is required to download the driver third-party catalogs for Lenovo devices.
65 | |[[https:~~/~~/downloads.dell.com>>url:https://downloads.dell.com/Catalog/DellSDPCatalogPC.cab]]|Is required to download the driver third-party catalogs for Dell devices.
66 | |[[http:~~/~~/officecdn.microsoft.com>>url:http://officecdn.microsoft.com]]|Is required to download the update files for a Microsoft 365 update.
67 | | |{{aagon.infobox}}If you are using Microsoft Office 365, the ACMP Server must also be able to access the [[following URLs>>https://docs.microsoft.com/en-us/microsoft-365/enterprise/urls-and-ip-address-ranges?view=o365-worldwide]]. Microsoft Office reserves the right to change the update links at any time.{{/aagon.infobox}}
68 |ACMP DNA2|[[https:~~/~~/dna2.aagon.com>>url:https://dna2.aagon.com/]]|This URL is used when licensing ACMP Managed Software to download the deployed Managed Software packages.
69 |ACMP Managed Software|[[https:~~/~~/msw.aagon.com>>url:https://msw.aagon.com/]]|This URL gives you access to your area in the Package Factory. In the Package Factory you can order the creation of software packages that are not included in the ACMP Managed Software.
70 |Portal|[[https:~~/~~/portal.aagon.com>>url:https://portal.aagon.com/]]|This URL gives you access to your area at the Package Factory. At the Package Factory, you can order the creation of software packages that are not included in ACMP Managed Software.
71
72
73
74 == ACMP server with restricted Internet connection ==
75
76 If you are using an ACMP server with a restricted Internet connection, please ensure that the Windows server you are using has all the necessary trusted root certificates. These are required to validate the SSL certificate chain correctly and to enable communication with the ACMP resources listed in this documentation (e.g., for updates, license comparisons, catalog downloads) to proceed successfully.
77
78 Windows updates these certificates by default via the Microsoft Root Certificate Update Service (http:~/~/www.download.windowsupdate.com). If the server does not have Internet access, the required root certificates must be imported manually. Without a valid certificate chain, access to protected ACMP services will fail.
79
80 = Incompatibilities with the virus scanner or the Endpoint Security solution =
81
82 In rare cases, incompatibilities with the virus scanner may occur. If this is the case, configure your antivirus solution so that it does not affect any files in the following directories or lock them with an access scan. When doing so, note the storage location of the partition for the respective service and, if necessary, customise it if you have used different paths to store the services.
83
84 |(% style="width:136px" %)**Service**|(% style="width:501px" %)**Ordner**|(% style="width:727px" %)**Description**
85 |(% style="width:136px" %)ACMP Server|(% style="width:501px" %)C:\Program Files (x86)\Aagon\ACMP Server|(% style="width:727px" %)Affects the ACMP Server installation directory
86 |(% style="width:136px" %) |(% style="width:501px" %)C:\ProgramData\Aagon|(% style="width:727px" %)Affects the ACMP Server //Temp Dir //directory
87 |(% style="width:136px" %) |(% style="width:501px" %)C:\Windows\Temp\Aagon|(% style="width:727px" %)Temporary directory for ACMP
88 |(% style="width:136px" %)ACMP Console|(% style="width:501px" %)C:\Program Files (x86)\Aagon\ACMP Console|(% style="width:727px" %)Console ACMP directory
89 |(% style="width:136px" %) |(% style="width:501px" %)%localappdata%\Aagon|(% style="width:727px" %)Variable may not work in AV software
90 |(% style="width:136px" %) |(% style="width:501px" %)%localappdata%\Temp\ACMP_TMP|(% style="width:727px" %)The variable may not work in the AV software
91 |(% style="width:136px" %)ACMP Agent|(% style="width:501px" %)C:\Program Files (x86)\ACMPClient|(% style="width:727px" %)ACMP client directory
92 |(% style="width:136px" %) |(% style="width:501px" %)C:\ACMPClient|(% style="width:727px" %)ACMP client directory (deprecated)
93 |(% style="width:136px" %) |(% style="width:501px" %)C:\ProgramData\Aagon|(% style="width:727px" %)Configuration directory for ACMP
94 | |(((
95 %localappdata%\Aagon\Temp
96 )))|(((
97 Temporary directory for ACMP
98
99 {{aagon.infobox}}
100 The agent runs in the service context and the paths for %localappdata%\Aagon\Temp are resolved as follows:
101 For the 32-bit ACMP Agent applications
102 C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Aagon\Temp
103 For the 64-bit ACMP Agent applications:
104 C:\Windows\System32\config\systemprofile\AppData\Local\Aagon\Temp
105
106 The ACMP Agent can also access the user context and uses a user-specific localappdata directory. This can be found in the path
107 C:\Users\%USERNAME%\AppData\Local
108
109 It is not possible to say how the virus scanner handles the variables, so please contact the vendor of the antivirus solution. Otherwise, the paths must be specified statically.
110 {{/aagon.infobox}}
111 )))
112
113 {{aagon.infobox}}
114 If you want to configure application-based exceptions for the virus scanner or the Endpoint Security solution, you must determine the individual applications that you want to exclude from the directories listed above and add them to the antivirus solution.
115 {{/aagon.infobox}}
© Aagon GmbH 2025
Besuchen Sie unsere Aagon-Community