- Scores: 0
- Joined: 5/16/2012
Installing SCCM 2012 site across un-trusted forests?
Wednesday, May 16, 2012 4:13 AM
I`m working on implementing SCCM 2012 and some of the other products.
My goal is to build a System Center environment that is able to do both monitoring, deployments and automatic deployments. All systems are based on Microsoft technologies.
Our current environment is build up with 3 different forests, and has NO trust between them.
Forest A – has about 100 servers in the same domain.
Forest B – Has about 150 servers in the same domain.
Forest C – has about 1000 servers in the same domain.
Each forest has its own network with firewall. I will be able to make firewall openings, but not any AD trusts.
I have read the planning guides on TechNet, and it says that you cannot build a hierarchy without two-way trust. I also found that the same document says that you can have one site that spans over my 3 forests. This can be done by installing site system server in each forest. Maybe this is the only way to do it?
I´m a bit unsure which design is the best for my setup so I would like some input / comments on how to build up my new System Center environment to support my current infrastructure without making big changes to it.