Shared Config Manager infrastructure


I was recently involved in the setup of a shared management infrastructure based on system center configuration manager 2012 R2. Now this has proven to be challenging so I share some of the leassons learned :

Untrusted forests.

The following blog explaings cross forest support in config manager :

Boundary Groups.

You can use AD Sites as boundaries. The site names need to be unique but modifying an AD Site name normally has no impact.

Client Deployment.

Deployment using group policy together with a set of adm templates is an efficient deployment method. No special firewall requirements and all active machines recieve the sccm client. No discovery methods needed.

Proxy management Points.

Secondary sites with management point are not always used , some actions require the client to contact the assigned management point. See Since the clients are not in the same ad forest and ad has not been extended, they will contact their assigned management point first.

OSD and AD site boundaries

WinPE is not domain joined and will not be able to use ad site boundaries. See


Gino D


Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )


Connecting to %s