SCOM in different domains - need to report to two different Management servers

Hi!

I have a scenario where I'm told to find a solution to monitroing a customers servers. The challenge is that the customer has it's own SCOM 2012 installation, and I need to make the agents report to my SCOM MS.

I know multihoming agents is possible in SCOM 2012, but I wonder if I need a SCOM gateway server in the customers domain in this scenario? We have a site-to-site VPN between our networks. If a GW server is needed, will it be possible to install when the customer has it's own SCOM? what would be the best solution to this scenario?

Any help appreciated:)

Best regards

Rune Haugen
Norway

June 24th, 2013 5:16pm


Hi,

Based on my understanding, Gateway server is mainly for authentication, so the agents in untrusted domain or workgroup can communicate with the management server.

In addition, please refer to the following post:

10 Reasons to use a Gateway Server
http://blogs.technet.com/b/momteam/archive/2008/02/19/10-reasons-to-use-a-gateway-server.aspx

For configuring multi-homing for the agents, please refer to:

Dude, where is the multi-home option for the OM12 Agent?
http://thoughtsonopsmgr.blogspot.com/2011/08/dude-where-is-multi-home-option-for.html

Thanks.

Free Windows Admin Tool Kit Click here and download it now
June 25th, 2013 10:53am

Can I ask the reason as to why you would like to multihome agents ? Apart from the info Nicholas gave, I would also like you to consider network bandwidth requirements, depending on how many clients report back to your server via VPN; Network might become a constraint, agent <--> management server uses 64 Kbps. 

Also consider the overhead on each agent machine.

Pls check: http://technet.microsoft.com/en-us/library/jj656654.aspx for Network connectivity speeds and firewall requirements

thx

Pranav

June 25th, 2013 11:23am

Hi

There are mainly 2 reasons to use a Gateway Server.

1) To monitor untrusted Domains/Forests

2) To compress Network traffic between monitored agents and Management Server.

As I understand your cutsomer Domain is not trusted with your enviroment, therfore you would Need a GW. The VPN Connection, if it has bad bandwidth or heavily used it would be another reason to use a GW.

And yes, you could use a GW in your customer Environment for multihoming.

Make sure you don't have the same Management Group Name as your customer evironmentment. This could lead to a Problem.

Cheers,

Stefan

Free Windows Admin Tool Kit Click here and download it now
June 27th, 2013 8:14am

Thanks for your reply :) I'll go for a gateway Server as the domain is untrusted. Bo problem with bandwidth on the VPN connection. Management Group names are not similar, so no problem there:)

Best regards
Rune

July 3rd, 2013 4:45pm

This topic is archived. No further replies will be accepted.

Other recent topics Other recent topics