Hi All,
I am referring the below TechNet article to create certificate templates required for IBCM in SCCM 2012 SP1.
https://technet.microsoft.com/en-us/library/gg682023.aspx
https://technet.microsoft.com/en-in/library/bb694035.aspx
Let me describe my scenario:
I have two AD Forests. ABINDIA.COM and ABCINFRA.COM Two way trust exists in between two forests.
SCCM 2012 SP1 Primary Site Server is installed in ABCINFRA.COM domain / forest. SCCM Server is managing clients in ABINDIA.COM domain / forest. SCCM Site Server is on Windows Server 2008 R2.
Windows CA Server is installed in ABINDIA.COM domain and it is on Windows Server 2003 OS.
I need to provide IBCM solution for existing SCCM hierarchy. IBCM Site Server will be on Windows Server 2012 RTM and will be in ABCINFRA.COM domain. Hence with referring to articles above mentioned, I need clarification on the below points:
1. Can SCCM 2012 SP1 Primary Site Server and IBCM Site Server requests certificates from Windows CA Server which is in different forest and on Windows Server 2003 OS?
2. If Yes, how can I publish the templates created in ABINDIA.COM domain CA Server to ABCINFRA.COM domain member servers so that they can request certificates across forests.
3. Managing Clients will be in ABINDIA.COM domain and as per my understanding there will not be an any issue to request certificates from CA Server which is in same domain. However can IBCM Site Server authenticate the ABINDIA.COM client computer based on client computer certificate.
Thanks & regards,
Kedar