Re: SMS 2003 Hierarchy within W2k3 Federated Forests
From: Ian Bing (IanBing_at_discussions.microsoft.com)
Date: 09/02/04
- Next message: Carl Hilton: "Re: Advanced Clients at remote sites"
- Previous message: Jayson: "Re: Advanced Client and long logoff time in Terminal Server sessio"
- In reply to: Luke Packard [MSFT]: "Re: SMS 2003 Hierarchy within W2k3 Federated Forests"
- Messages sorted by: [ date ] [ thread ]
Date: Thu, 2 Sep 2004 01:19:03 -0700
Thanks Luke
"Luke Packard [MSFT]" wrote:
> 2 way communication is required for site to site communication. A 2 way
> trust is not required for site to site communication. In you case you will
> need to create all site address accounts in the parent forest. Grant the
> account used for parent to child communication membership in the child
> site's sitetositeconnection group and grant the account used for child to
> parent communication membership in the parent's site's sitetositeconnection
> group. You can do this whether the sites are in standard or advanced
> security.
>
> --
> Luke Packard [MSFT]
>
> SMS 2003 Technical FAQ:
> http://www.microsoft.com/technet/prodtechnol/sms/sms2003/techfaq/default.mspx
>
> This posting is provided "AS IS" with no warranties, and confers no rights.
>
> "Ian Bing" <IanBing@discussions.microsoft.com> wrote in message
> news:3E8E3DEC-BDA8-4486-889A-79E87EB9392D@microsoft.com...
> > I'm trying to design a SMS 2003 hierarchy within a complicated
> > multi-forest
> > environment. Each forest will have a single domain only. The top "parent"
> > forest can only have a one-way, non-transitive trust (external) to each of
> > the "child" forests, i.e. the child forests can trust the parent but not
> > vice
> > versa.
> >
> > I would like to implement an SMS infrastructure that would be controlled
> > within the "parent" forest only.
> >
> > I know in multi-forest enviroments there needs to be primary sms site in
> > each forest. However for SMS site-site communications MS documentation
> > says
> > the following is required:
> >
> > · You are using the Windows Server 2003 family.
> > · The forest functional level is set to Windows Server 2003.
> > · SMS is running in advanced security mode.
> > · The forests are configured with a transitive trust.
> >
> > Surely if there is only one domain in each trust, using a non-transitive
> > trust does not matter?
> > Also, does the trust need to be 2-way? For sms site to site communication
> > to
> > occur, information needs to flow both ways!
> >
> > Thanks
> > --
> > Ian Bing
> > Microsoft Consultant
> > SCC Ltd
>
>
>
- Next message: Carl Hilton: "Re: Advanced Clients at remote sites"
- Previous message: Jayson: "Re: Advanced Client and long logoff time in Terminal Server sessio"
- In reply to: Luke Packard [MSFT]: "Re: SMS 2003 Hierarchy within W2k3 Federated Forests"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
