niaidsdt
asked on
SCCM 2007 - External Clients
I've been asked to looking into how we can manage external clients with SCCM 2007 and need some help getting started/pointed in the right direction.
Our AD topology is that we are a child domain. In our Child Domain we have a standalone root CA. The RootCA has been added to the Trusted root certificate store of the Default Domain Policy and as such, all the SCCM clients (windows 7 OS's) trust our Root CA.
Can someone point me or show me how they've managed external SCCM clients with an standalone root CA?
Our AD topology is that we are a child domain. In our Child Domain we have a standalone root CA. The RootCA has been added to the Trusted root certificate store of the Default Domain Policy and as such, all the SCCM clients (windows 7 OS's) trust our Root CA.
Can someone point me or show me how they've managed external SCCM clients with an standalone root CA?
ASKER
All cliens will be xp sp3 and windows 7. We are in mixed mode at the moment.
So you have a trust relationship or common forest?
Anyway the Workstation guide/Forum is
http://www.windows-noob.com/forums/index.php?/topic/2029-managing-workgroup-computers-in-sccm-sms-environment/
Anyway the Workstation guide/Forum is
http://www.windows-noob.com/forums/index.php?/topic/2029-managing-workgroup-computers-in-sccm-sms-environment/
ASKER
Yes, we have a transitive trust with our parent domain.
Thanks for the link but i'm not sure how it relates to managing external SCCM clients with a PKI infrastructure. Each computer has been bound to our child domain.
Thanks for the link but i'm not sure how it relates to managing external SCCM clients with a PKI infrastructure. Each computer has been bound to our child domain.
Are you talking about Clients which are not connected to you Local Network and which have to be managed over the Internet or Clients which aren't in your Domain?
You can manage both:
For Clients which are not in you Domain you need Server Locator Points
For Clients which shell be managed over the Internet,you need VPN, Direct Access or your SCCM Infrastructure published into the Internet
You can manage both:
For Clients which are not in you Domain you need Server Locator Points
For Clients which shell be managed over the Internet,you need VPN, Direct Access or your SCCM Infrastructure published into the Internet
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
got in contact with microsoft
Do you have a list of the OS versions of the external ones.
Is it in native mode?