Hello all I have a couple domains that I am trying to get up on System Center 2012 leveraging HTTPS only, both domains already have root CA's installed, and there is a 2 way trust between the two domains. Someone else already started this project, and installed a Primary Site on Domain 1, and none of the clients on Domain 2 are able to join the primary site on Domain 1. I understand I could deploy a child site, or a secondary site however I can't make out from Microsoft's literature if this will actually work, or how to implement the PKI configuration so these clients on Domain 2 can talk to the secondary or child site on Domain 2. Can I deploy a child site in Domain 2 and configure the clients to communicate with this child site via HTTPS / PKI? Thanks in advance for any pointers.

Hi, Thanks for posting in Microsoft TechNet forums. Please understand that this issue is more related to System Center 2012 than Windows Server. I suggest we post this issue at System Center forum. There you can get more effective suggestion by other experts who familiar with the System Center product. http://social.technet.microsoft.com/Forums/en-us/category/configurationmanager,scinterop,dpm,systemcenter,scmdm,systemcenteroperationsmanager,systemcenteronlineservices,virtualmachinemanager,servicemanager Your understanding is appreciated. Regards Kevin

I actually already posted there and did not get a ton of feedback. http://social.technet.microsoft.com/Forums/en-US/configmanagergeneral/thread/18facf69-d9f3-439f-ab85-5c3a25e3cf97 It seemed as if nobody was sure of how SCCM child sites and PKI interacted in regards to cross-forest with disparate Root CA's, so I figured I'd try posting here. Anyways I've run out of time, I'm going to deploy a 2nd SCCM infrastructure on Domain 2, and hopefully when SCCM 2012 SP1 comes out, it will allow people to join an existing Primary site to an existing CAS... if not I'll have to re-deploy in Domain 1 beneath the CAS in domain 2. Was hoping to avoid this. Thanks.

Hi, Thank you for sharing your idea with us. Have a nice day. Regards Kevin