GarthMJ

I’m sorry to say this is an insane request. You need to talk to the person asking this and tell them “No”. Yes it is theoretically possible to do but theory and practice are two different things. CM12 will NOT inventory all EXE, even if you tell it too. CM12 will time out after 4 hours (runtime, not real time) of Scanning, if it not complete it will just stop and that it. While SW Inv is going on all other inventory tasks are blocked. Each different computer will have different EXE based on what tools are installed or Driver are installed. ‘ Just using my PCs as an example and only look at EXE, I have over 4700 EXEs on my C: alone! Each version of a EXE will be consider as two different items. Etc. Seriously I could go on and on about how this will virtually never work. What you need to find out is exactly what are their trying to solve by doing this. What is the risk of nto doing this and how much $$s do they want to spend on this?

Since you only waited less than 3 hours before "bumping" this post, it must mean this is an emergency and therefore you should contact Microsoft support (CSS) directly. They will work with you to solve this issue. Secondly, I'm sure that it can be done but it clearly is not a simple task, this will take a lot of programming and fiddling with security rights to get it right. My guess is that this will take someone ~1-5 days to create and test. Start by figuring out how to query DHCP using VBS or PowerShell, once you figure that out you can move on from there.

I would use a direct membership for the security group that you are using for both users and computers. Uninstalling for users collection is harder as it means that the SW might flip flop, Why would you want to do this? BTW You uninstall query will only find x86 software. it is not best practice to use NetBIOS name in the subselect, instead use resourceid.

Have you tried the built-in reports?

Does it make it to IIS?

So you are going to have to create a share on each DP in order to capture this data. you can parse the DP name from the HTTP address. Also keep in mind that you based on xcopy command above you will only ever has 1 set of logs on each DP.

Are you sure that you are not getting an access denied? I would think that you would be. Again, how do you plan to prevent each computer over writing the next OSD's logs?

How is one place any different that user going to the software center or application catalog? Deploying to *nix and MAC new to CM12 but the feature has been there since the beginning. (if I remember right)

What is not working? What error do you get? Have you checked the permission on the share and files? Are you sure? Why would you want to do this? How can you tell which OSD deployment the logs are for.

#1 how is it multiple place? aka how exact would it be different than DFS with respect to multiple places? #1 Yes there is a reason, it is less secure to use a domain account that using the local system account, Plus it will not allow you to manage workgroup PC, *nix, mac, and mobile phone and increase your support cost.

#1, yes I think you are missing the whole point of CM12. DP should always be "near" client, they use BITS to download content or use branch cache to reduce network traffic. #2, I'm sure you can make it work but you will be compromising security to do it. Again you are not using the benefits of CM12, branch cache, etc.

1. Why would you use DFS, instead of a DP? This complete defeats the purpose of what CM12 does. 2. This is going to be a permission issue. Why because the local system account does NOT have access to the DFS server and therefore get accessed denied to the MSI.

So your query will only show you x64 PCs as written. Try this. (watch out for typo and I write this freehand.) select distinct SMS_R_System.ResourceId, SMS_R_System.NetbiosName, SMS_R_System.OperatingSystemNameandVersion from SMS_R_System where SMS_R_System.ResourceId not in ( select SMS_G_System_ADD_REMOVE_PROGRAMS.ResourceID from SMS_G_System_ADD_REMOVE_PROGRAMS where SMS_G_System_ADD_REMOVE_PROGRAMS.DisplayName = "Microsoft Forefront Endpoint Protection 2010" or SMS_G_System_ADD_REMOVE_PROGRAMS.DisplayName = "Microsoft Forefront Endpoint Protection" ) and SMS_R_System.ResourceId not in ( select SMS_G_System_ADD_REMOVE_PROGRAMS_64.ResourceID from SMS_G_System_ADD_REMOVE_PROGRAMS_64 where SMS_G_System_ADD_REMOVE_PROGRAMS_64.DisplayName = "Microsoft Forefront Endpoint Protection 2010" or SMS_G_System_ADD_REMOVE_PROGRAMS_64.DisplayName = "Microsoft Forefront Endpoint Protection" )

Your subselect has too many columns, you can only have 1 column with a subselect query.

So what was added / changed 3 weeks ago?

This is so not supported and will likely cause problem the next time you try to upgrade you site. Why wouldn't you take an (IMO) easier and support method and setup Status filter rule to execute a SSRS report or something like that?

Yes, it is best practice (in general) to have SQL and CM12 on the same server.

Does the site server computer account have full admin to both the SQL server and SQL itself? BTW it is generally not best practice to have SQL remote from CM12

Does the Reg key exist?

I re-read this post and it look like I need more coffee.. :-) I still "hate" SW inventory and think no one should use it but...

I would love to hear what the business requirement is to have SW inv enable and even more so why it needs to be less than 5 minutes.

No it is not mandatory but it is recommended. BTW, you should go for Windows 2012 for your server not Win2k8R2.

Is your CM07 site server computer account an SA within SQL?

I would suggest re-installing SSRS, reboot between the uninstall and the install if you can.

So what does the Web service URL node look like now? Until you can connect the webservice url via IE or firefox there isn't much that you can do. If you can I would re-install SSRS.