Extending SCCM to cover another Domain Forest

• Extending SCCM to cover another Domain Forest
  
  Scenario:
  I have two Forests, Forest A (DomainA.COM) and Forest B (DomainB.COM). Forest A has an existing SCCM implementation of workstations and servers . SCCM in Forest A seems to work fine. Forest B is all servers. We are beginning to use SCCM to deploy software updates to servers and we want to be able to manage the servers in the other forest. There is a two-way trust between the two forests.
  
  Configure a SLP (Server Locator Point) on your Central site in DomainA.COM
  Give read access to the DomainA.COM\SCCM-SITESERVERS group on the DomainB.COM\SYSTEM container.
  
  Specify Custom LDAP Query in AD System Discovery on relevant Distribution Point to include DomainB.COM, for example (DomainB.COM Servers for Frankfurt)
  ldap://OU=SERVERS,OU=Frankfurt,DC=,DC=DomainB,DC=COM/
  
  
  Click on polling schedule and run discovery as soon as possible – to monitor progress look in adsysdis.log on relevant distribution point
  
  · Add IP Subnet boundary in relevant Distribution Server – for example in Frankfurt
  
  To find out what the IP boundary is go to one server you want to manage and run ipconfig, take a note of the IP and subnet
  
  · Add DomainA.COM\SCCMCLIENT account to local admin on all DomainB.COM managed Servers Local admin group.