Kevin79 Posted August 3, 2012 Report post Posted August 3, 2012 I'm thinking of putting a SCCM server in our DMZ so that I can manage our remote clients but I'm not totally clear on the process. First off, is this the recommended way? I'm guessing I'll have a secondary site in the DMZ that points to my primary site, correct? What firewall ports need to be opened up to allow the SCCM server in the DMZ to talk to the SCCM in the local LAN? How do I configure it so that it manages only clients on the internet/WAN? Will this allow me to deploy Window's updates, SCEP definitions and applications to my remote clients? Quote Share this post Link to post Share on other sites More sharing options...
Rocket Man Posted August 3, 2012 Report post Posted August 3, 2012 Is it remote clients on other subnets on your WAN or clients out in the wild like clients working from home across the public internet?? Quote Share this post Link to post Share on other sites More sharing options...
Kevin79 Posted August 4, 2012 Report post Posted August 4, 2012 They are clients working from home or remote locations across the public internet. Quote Share this post Link to post Share on other sites More sharing options...
Rocket Man Posted August 4, 2012 Report post Posted August 4, 2012 Well you need to configure your SCCM DP for intranet and internet based clients. Certificates will also have to be created for the internet based clients and you will have to publish your SCCM site server so that clients can talk back to the MP over the internet in other words clients out in the wild. There is quite a bit of configuration with this and saying so you also have a DMZ in your enviornment I would advice to to get some professional expertise on this.....someone who can call to site and do a survey of your network(s) and advice on the best configuration..... Â there are alot of factors to bear in mind with your enviornment especially with DMZ implemented. Â And to answer your questions about software deployment, SCEP etc....of course this can work in this scenario but it will take quite a bit of configuration. 1 Quote Share this post Link to post Share on other sites More sharing options...
marlonc1980 Posted August 16, 2012 Report post Posted August 16, 2012 I would like to know about how to do to configure the server and clients when users outside the corporate network and connect to the internet or working from home, this is very interesting if anyone knows how to do it you'll be very, very thankful since already Quote Share this post Link to post Share on other sites More sharing options...
marlonc1980 Posted August 17, 2012 Report post Posted August 17, 2012 I understand, thank you for your answer, where I can get information about it, I appreciate if you help me please with this friend, I want to know details to proceed to implement Quote Share this post Link to post Share on other sites More sharing options...
Ocelaris Posted August 17, 2012 Report post Posted August 17, 2012 Bump, I already have the certificates and Network part squared away, just looking for testing scenarios to troubleshoot/prove it works... Quote Share this post Link to post Share on other sites More sharing options...
