I'm getting Access Denied deploying Agents on Windows 10 1709 computers

Document ID : KB000074447
Last Modified Date : 23/03/2018
Show Technical Document Details
Issue:
Using deployment wizard, I get an error "Access is denied." using a domain administrator account.

Activating the DMdeploy process log in Detail (cftrace -c set -f cf -pp dmdeploy -l detail -s 50000 -ln 4) we can see the following activity:

<timestamp>|009316|00003b04|DMDeploy  |DmDeploy        |cdmdeployer.cpp     |005037|INFO   | Trying SHARE transport to send primer package G:\Program Files (x86)\CA\DSM\\Packages\Private\CAUnicenterDSM\dmprimer\Windows_x86 to <target-name>
<timestamp>|009316|00003b04|DMDeploy  |DmDeploy        |cdmdeployer.cpp     |005059|DETAIL | Attempting to open share \\<target-ip-address>\admin$
<timestamp>|009316|00003b04|DMDeploy  |DmDeploy        |cdmdeployer.cpp     |005082|DETAIL | Found user/pass info for <target-ip-address>
<timestamp>|009316|00003b04|DMDeploy  |DmDeploy        |cdmdeployer.cpp     |005125|DETAIL |  szFullTargetUsername = <domain-name>\<domain-admin>
<timestamp>|009316|00003b04|DMDeploy  |DmDeploy        |cdmdeployer.cpp     |005127|DETAIL | Calling WNetAddConnection2W
<timestamp>|009316|00003b04|DMDeploy  |DmDeploy        |cdmdeployer.cpp     |005130|WARNING| Max connection attempts: 2
<timestamp>|009316|00003b04|DMDeploy  |DmDeploy        |cdmdeployer.cpp     |005143|WARNING| Call no. 1 to WNetAddConnection2W failed, return code was: 5
<timestamp>|009316|00003b04|DMDeploy  |DmDeploy        |cdmdeployer.cpp     |005143|WARNING| Call no. 2 to WNetAddConnection2W failed, return code was: 5
<timestamp>|009316|00003b04|DMDeploy  |DmDeploy        |cdmdeployer.cpp     |005143|WARNING| Call no. 3 to WNetAddConnection2W failed, return code was: 5
<timestamp>|009316|00003b04|DMDeploy  |DmDeploy        |cdmdeployer.cpp     |007949|DETAIL | The requested access was denied.
<timestamp>|009316|00003b04|DMDeploy  |DmDeploy        |cdmdeployer.cpp     |005607|DETAIL |  Access to the network resource was denied.

Mapping the admin$ share from windows explorer works fine.

But using "net use" and using the IP address (net use \\<target-ip-address>\admin$ /USER:<domain-name>\<domain-admin>) failed with access denied. However, using hostname succeeded.
Environment:
CA-Client Automation R14 SP2
Observed on Windows 10 1709 target.
Resolution:
Worked fine after set the following parameter to True: DSM > Manager > Infrastructure Deployment > Use host names