So I have 2 domains. No Trust between the domains. Domain A has a Primary Site, and manages 8000 machines. I am trying to get the machines, from domain B, to install the SCCM client and do all communication with Domain A Primary Site Server. I have created a SLP, in domain A. I have opened up ports 80 and 443, that allows machines on Domain B to communicate with Domain A. I have added the SLP into the Client Install command: CCMSETUP.exe /mp:edcmsccm01.saint-lukes.org /service SMSSITECODE=SLH SMSLP=edcmsccm01.saint-lukes.org FSP=EDCMSCCMFSP.saint-lukes.org I have created a Client Push Installation account, that has local admin credentials in Domain B. I have added this account to the Client Push Installation accounts, on the Primary Server. Here is my error from CCMSETUP.log: Updated security on object C:\WINDOWS\system32\ccmsetup\. ccmsetup 11/9/2010 9:03:40 AM 3416 (0x0D58) Sending Fallback Status Point message, STATEID='100'. ccmsetup 11/9/2010 9:03:40 AM 3416 (0x0D58) sending with winhttp failed; 80072ee7 FSPStateMessage 11/9/2010 9:03:40 AM 3416 (0x0D58) Successfully started the ccmsetup service ccmsetup 11/9/2010 9:03:40 AM 412 (0x019C) Running as user "SYSTEM" ccmsetup 11/9/2010 9:03:40 AM 3552 (0x0DE0) Detected 59750 MB free disk space on system drive. ccmsetup 11/9/2010 9:03:40 AM 3552 (0x0DE0) DetectWindowsEmbeddedFBWF() Detecting OS Version ccmsetup 11/9/2010 9:03:40 AM 3552 (0x0DE0) Client OS Version is 5.1, Service Pack Version 3 ccmsetup 11/9/2010 9:03:40 AM 3552 (0x0DE0) Client OS is not a supported Windows Embedded Platform ccmsetup 11/9/2010 9:03:40 AM 3552 (0x0DE0) Waiting for existing instances of ccmsetup to exit. ccmsetup 11/9/2010 9:03:40 AM 3552 (0x0DE0) Deleted file C:\WINDOWS\system32\ccmsetup\ccmsetup.exe.download ccmsetup 11/9/2010 9:03:40 AM 412 (0x019C) All other instances of ccmsetup have completed. ccmsetup 11/9/2010 9:03:40 AM 3552 (0x0DE0) Ccmsetup is being restarted due to an administrative action. Installation files will be reset and downloaded again. ccmsetup 11/9/2010 9:03:40 AM 3552 (0x0DE0) Successfully ran BITS check. ccmsetup 11/9/2010 9:03:40 AM 3552 (0x0DE0) Failed to send HTTP request. (Error at WinHttpSendRequest: 12007) ccmsetup 11/9/2010 9:03:40 AM 3552 (0x0DE0) DownloadFileByWinHTTP encountered an unrecoverable error. ccmsetup 11/9/2010 9:03:40 AM 3552 (0x0DE0) Sending Fallback Status Point message, STATEID='308'. ccmsetup 11/9/2010 9:03:40 AM 3552 (0x0DE0) sending with winhttp failed; 80072ee7 FSPStateMessage 11/9/2010 9:03:40 AM 3552 (0x0DE0) Also this article does not help me, I do not know what I am doing wrong: http://technet.microsoft.com/en-us/library/bb694003.aspx Thanks

Seperate forests I assume? Same forest it's not problem you just need some accounts setup. Seperate forests I'd advise you to add a second primary site to save yourself lots of headache. John Marcum | http://myitforum.com/cs2/blogs/jmarcum |

Thanks. I will check into adding a second primary server.

So I have been reading posts where I do not need to add a secondary primary site to domain B. Do I have to do this? Domain B will be part of Domain A, within a couple months.

Hello Triage, For your reference, here are some related threads: Cross-domain SCCM scenario http://social.technet.microsoft.com/Forums/en/configmgrgeneral/thread/9f739451-5bac-486a-ab7e-97cae719680c SCCM and Multiple, non trusting Active Directory Forests http://social.technet.microsoft.com/Forums/en-US/configmgrgeneral/thread/573b788e-c7fa-4cdc-a761-c4b64864b9b8 Task Sequence stop with a following error: 80072ee7 http://social.technet.microsoft.com/Forums/en-US/configmgrosd/thread/63b99e3d-0a98-42df-b00d-823326e4c487/ Hope it helps,Yog Li -- Please remember to click Mark as Answer on the post that helps you, and to click Unmark as Answer if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread.

"No Trust between the domains" All domains within a forest are automatically trusted, so it sounds like these clients are in a separate, untrusted forest. If that is the case, then from Configuration Manager's perspective, think of these clients as workgroup computers and install them manually (http://technet.microsoft.com/en-us/library/bb680962.aspx). Make sure that name resolution is working between the two forests.