SCOM GATEWAY SETUP QUESTIONS
Good morning!
I have a quick question about the order of settting up a SCOM GATEWAY server in a DOMAIN without trusts. The gateway server will be joined to the DOMAIN of the servers I wish to manage and has good DNS. I will setup the GATEWAY to communicate
with a MS not the RMS. So should the process look like this??:
Open port TCP5723 for communication Obtain and import certs on the GATEWAY, and MGT SERVER (I dont need certs for the AGENTS if I am using a gateway..correct??)
Install the Gateway approval tool on the MS that the GW will communicate with
Run the approval tool on the MGT SERVER Finally install the GATEWAY software on the Gateway server (This seemed out of place last...but that is why I am asking..hehe)
Thanks in advance guys!
Kevin
February 24th, 2011 8:04pm
Looks good.
As long as the agentes are in the same domain or as the GW or a domain with full trust to the GW domain they dont need certs.
Monitoring agents in an untrusted domain or workgroup using Operations Manager 2007
http://support.microsoft.com/kb/982910/
mats.w | www.opsmode.com
Free Windows Admin Tool Kit Click here and download it now
February 24th, 2011 8:23pm
Hi
Don't forget to import the Trusted Root Certificate as well as the OpsMgr certificate onto each component - I've done some walk throughs here:
http://systemcentersolutions.wordpress.com/category/certificates/
Also, you'll need to run MOMCertImport to "register" the certificate with the SCOM component.
Cheers
GrahamView OpsMgr tips and tricks at
http://systemcentersolutions.wordpress.com/
February 24th, 2011 8:48pm