Solved

SCCM in SIngle Forest Multi Domain Design

Posted on 2012-04-12
3
2,177 Views
Last Modified: 2012-04-23
I am designing SCCM 2007 in Single Forest (Empty Domain) with Multi-domain with the help of Adaptiva OneSite which eliminates need of a lot of SCCM requirements for such a design.

Customer wants a Primary site in a child domain.
Schema for this domain has been extended.
All domains in the forest have two way trust.

Question:
1) Do I need to extend schema at the top level (Empty domain) as well?
or this will work because of the two-way trusts
2) What effect will this have on the MP traffic?

Thanks

Thanks
0
Comment
Question by:ddd1234
  • 2
3 Comments
 

Accepted Solution

by:
mydocuments1 earned 500 total points
ID: 37841983
If you have a single forest with multiple domains you can manage all domains simply by extending the AD schema. If you have clients in untrusted domains or in another forest then you can use a Server Locator Point so the clients will find their management point regardless of what domain they are in if they are in a domain at all.

 

SCCM AD System Discovery only supports discovering systems in trusted domains to the domain it is installed in. If you want to discover systems in untrusted domains or  untrusted forests you would have to use network discovery or Enhanced System Discovery 2007 from my site.
0
 

Assisted Solution

by:ddd1234
ddd1234 earned 0 total points
ID: 37842887
Thanks, I am aware of this but may be my question was not clear enough    

The question is -
if The schema is extended only in the child domain where SCCM server will be located and not at the root of the domain.
a) will this work as is? Because of the trust between the domains?
or
b) Will have to extend the schema at the root level, meaning creating Systems Management Container there and giving SCCM Server from child domain full permission to it and Child objects ?

Thanks
0
 

Author Closing Comment

by:ddd1234
ID: 37880036
Accepted
0

Featured Post

Comprehensive Backup Solutions for Microsoft

Acronis protects the complete Microsoft technology stack: Windows Server, Windows PC, laptop and Surface data; Microsoft business applications; Microsoft Hyper-V; Azure VMs; Microsoft Windows Server 2016; Microsoft Exchange 2016 and SQL Server 2016.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Back in July, I blogged about how Microsoft's new server pricing model, combined with the end of the Small Business Server package, would result in significant cost increases for many small businesses (see SBS End of Life: Microsoft Punishes Small B…
Introduction: Sometimes when I receive a call from my users to solve their problems it is very difficult for me to found their computer IP address. Even finding their computer Host to provide remote support can be a problem.  So I resorted to Goo…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…

770 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question