locked
Management Point Database Replication from Primary Site Server RRS feed

  • Question

  • Hi Team,

    We are implementing SCCM 2012 R2 SP1 in our environment and we have completed deployment of Production (trusted) network successfully. Now we are planning for untrusted domain clients to manage using SCCM and since there are port restrictions from untrusted domain to production network there are some issues. Ports are opened from Primary Site (Production network) to Untrusted domain but not from Untrusted domain to production. And we have installed Full SQL 2012 SP1 on Management Point server in Untrusted domain and now want to implement SQL replication from Primary Site to MP in untrusted domain.

    Please suggest how will this solution work and how can we implement this ? how feasible is it ?

    Thanks in advance.

    Friday, March 4, 2016 11:02 AM

Answers

  • You don't need to use SQL replication for this, simply put an MP, DP, and SUP in the untrusted domain. These can all be co-located on a single site system. You will have to open some ports from this site system back to the SQL DB, but that's it as long as you select the option to have the site server initiate communication.

    Jason | http://blog.configmgrftw.com | @jasonsandys

    • Proposed as answer by Frank Dong Thursday, March 24, 2016 8:48 AM
    • Marked as answer by Frank Dong Saturday, March 26, 2016 11:52 AM
    Saturday, March 5, 2016 12:09 AM

All replies

  • SQL replication requires Kerberos and that requires a two-way trust.

    Torsten Meringer | http://www.mssccmfaq.de

    Friday, March 4, 2016 11:57 AM
  • You don't need to use SQL replication for this, simply put an MP, DP, and SUP in the untrusted domain. These can all be co-located on a single site system. You will have to open some ports from this site system back to the SQL DB, but that's it as long as you select the option to have the site server initiate communication.

    Jason | http://blog.configmgrftw.com | @jasonsandys

    • Proposed as answer by Frank Dong Thursday, March 24, 2016 8:48 AM
    • Marked as answer by Frank Dong Saturday, March 26, 2016 11:52 AM
    Saturday, March 5, 2016 12:09 AM