Does FCS support other directory services like open LDAP??
- If an enviroment have no AD, let's say in workgroup, does FCS can be installed?? thanks!
All Replies
- or say does FCS can work on workgroup? anyone can help??
Hi Teddy
Thanks for your questions!
I'll address both your questions:
Q1: Does FCS support other services like open LDAP?
A1: At this time, we do not support any other directory services besides Active Directory
Q2: Can FCS work in a workgroup environment?
A2: I've covered this topic in a previous post and will cover a few details again here. This breaks down into a few different scenarios:
Scenario 1: All machines are non-domain joined
You can disable MOM's Mutual Authentication on the server and clients, but there are associated risks with this (see the previous posting linked above). You can use all the features in the FCS product in this scenario, but with the stated risks
Scenarios 2: Mixed environment of non-domain joined machines
You could disable MOM's Mutual Auth to support the non-domain joined machines, but that would not be a best practice, since it's likely the majority of your machines are domain-joined. In this case, you could have two instances of the FCS server, one for the domain joined and one for the non-domain joined hosts. Or, if you were not concerned about reporting and alerting on the non-domain joined machines, you could not install the MOM agent (use the /NOMOM switch), leave Mutual Authentication on and gather data only on the domain joined machines
Hope this helps
Thanks
Chris
Forefront Client Security PM
