We are implementing a new sccm 2012 install which is going to handle all Endpoint (SCEP) and software updates. The network has an existing WSUS server, but it will go away once the migration is complete. There is no preexisting FEP infrastructure. Existing systems have GPOs assigned to configure WSUS on the clients.
I've created a new OU for SCCM pilot systems as we get this running. Unfortunately, the OU inherits all the existing GPOs in the company. I can't filter the OU at this time. But I need to build a NEW gpo for this OU, so that it will supersede the current WSUS GPO and free up SCCM to handle the SUP and SCEP processes.
When we are done, and the environment is to be totally managed by SCCM, I don't think we need ANY GPOs as SCCM handles this all via client local policy assignments. However, I need to know what to set in my pilot GPO so that machines in my Pilot OU wont be getting conflicting GPO settings. Can someone tell me what to set in my GPOs for my pilots so SCCM can manage the environment?
Since SCEP is now in the mix, I'm not sure what I need to have on and off, and based on conversations I'm seeing online, it's not exactly clear. Most of the docs I've seen are with a FEP infrastructure external to SCCM (SCCM07, with FEP, etc), or are written assuming you have no preexisting infrastructure to migrate from. Now I've got one integrated system managing all 3 processes, so I'm not sure what GPO to set to get the old stuff out and let the new stuff play.
Thanks!
Ed