Hi,
Our current MDT server is Windows Server 2008 R2, with the database being on a separate server, also running Windows Server 2008 R2 and SQL Server Standard 2008 (not R2)
I'm moving MDT to a new Windows Server 2016 machine, with the database server also being upgraded to Windows Server 2016 and SQL Server Standard 2016. On the old install, I used the SQL Share option for integrated security for Windows PE as I could never
work out how to avoid it.
Now, I would like to avoid a 'dead' share and setup integrated security properly. What do I need to do? I am familiar with Kerberos delegation etc. as I had to do this for IIS double-hop issue. SQL Services are used with a domain user and that domain user
has the relevant SPNs.
I also have a domain admin user for the Windows PE stage. This is in bootstrap.ini:
[Default]
SkipBDDWelcome=YES
KeyboardLocalePE=en-GB
UserID=WDS.Service
UserPassword=*************
UserDomain=DOMAIN
Thanks