Solved

WINS and SMS 2003 - Cross-forest requirements

Posted on 2011-02-21
8
573 Views
Last Modified: 2012-05-11
Hi,

My client is looking to extend their existing SMS 2003 hierarchy into a separate AD forest.  The two forests will be joined by a two-way trust; both are based on Windows 2003.

From the Microsoft articles I have seen so far, the way to achieve this appears to be the creation of another Primary SMS Site server to form the top level of the hierarchy within the new AD forest, and have that Primary communicate with the original top-level Primary Site server in the original AD forest.

To achieve this, it seems that WINS is required for comms between the two Primary servers.

My question is.....how far does the WINS infrastructure need to extend?  Do I only need to provide WINS for the two top-level SMS servers to communicate, or because of the overall configuration do I need to provide WINS for every Child / Secondary server within the new AD forest also?  I can't find any clarification for this anywhere.

TIA
0
Comment
Question by:Mark_R
  • 5
  • 3
8 Comments
 
LVL 51

Accepted Solution

by:
Netman66 earned 200 total points
ID: 34947675
I think a simple LMHOST file would work fine as long as your two networks had different IP ranges.

Since SMS 2003 requires AD, you're going to have to setup site boundaries and conditional forwarding, however I'm not sure it will work since SMS belongs to one forest and you're trying to service another.  It might, but I've never tested it.

My gut feeling says it won't work since the other site is not part of the first forest and therefore has completely different AD schemas.

0
 
LVL 1

Author Comment

by:Mark_R
ID: 34961708
Thanks for the reply!

According to the Microsoft docs I've found, the cross-forest operation will be OK as long as the second forest has a Primary Site Server from which all SMS sites in the new hierarchy can 'hang'; in terms of other site's not working cross-forest, Seconday Sites won't so you're right in that respect (again, according to the MS docs!!)

The two networks supporting the forests will have different IP ranges, yes.

So, the thought is that an LMHOSTS file on the second forest's Primary Site server may be sufficient, yes?  
Any child sites in the second forest would be fine to use AD / DNS as they normally would?

I guess I'm looking for as confident as an answer as possible as I have to propose this as a potential solution with no way to test it (the second network and forest don't exist yet).
0
 
LVL 51

Expert Comment

by:Netman66
ID: 34964654
You could try the LMHOST file, yes.  It's simple and can be quickly undone should it cause other issues.  You may also need conditional forwarding setup in that forest/domain so that child sites could resolve - but it's possible they too will need an LMHOST file.

You could test it using VMs.  It's a bit of work, but it isn't impossible.
0
Migrating Your Company's PCs

To keep pace with competitors, businesses must keep employees productive, and that means providing them with the latest technology. This document provides the tips and tricks you need to help you migrate an outdated PC fleet to new desktops, laptops, and tablets.

 
LVL 1

Author Comment

by:Mark_R
ID: 34971619
OK, will test on that basis.  Unlikely that I can respond within the next few weeks with results though, as I don't have access to any test infrastructure (and wouldn't have time to do anything even if I did)and the resources that do will need to be lined up.

If I find anything in the meantime, I will update this thread.  If it starts to drag on too long, i will award points based on what is here.

Many thanks for the input so far.
0
 
LVL 51

Expert Comment

by:Netman66
ID: 34972315
Take your time, do it right.

No rush.
0
 
LVL 1

Author Comment

by:Mark_R
ID: 35098687
Just an update to avoid unwanted attention!

The thread is open and the proposed solution will be verified, but this will not be for a number of weeks yet.
0
 
LVL 1

Author Comment

by:Mark_R
ID: 36228051
OK, final update.....the solution changed to a fully separate SMS hierarchy in the end, so no cross-forest connectivity was required.  Furthermore, I'm working with a different client now and therefore I can't verify anything from my previous client.

So, I'll award the points to the first answer.  Thanks for your patience!  :)
0
 
LVL 1

Author Closing Comment

by:Mark_R
ID: 36228059
Unable to test proposed solution (see last post in thread).
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

On July 14th 2015, Windows Server 2003 will become End of Support, leaving hundreds of thousands of servers around the world that still run this 12 year old operating system vulnerable and potentially out of compliance in many organisations around t…
Restoring deleted objects in Active Directory has been a standard feature in Active Directory for many years, yet some admins may not know what is available.
Although Jacob Bernoulli (1654-1705) has been credited as the creator of "Binomial Distribution Table", Gottfried Leibniz (1646-1716) did his dissertation on the subject in 1666; Leibniz you may recall is the co-inventor of "Calculus" and beat Isaac…
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…

770 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question