Hi All,
I am trying to get SCCM client to install and talk to servers that are Workgroup (non-domain joined) and sitting in a DMZ, i.e. outside our regular domain.
We have a MP installed in the DMZ that is intended to communicate with devices in the DMZ, domain-joined or not.
The DMZ domain-joined machines SCCM clients work fine, its the DMZ workgroup machines that don't.
I am installing SCCM client with syntax like: ccmsetup.exe /mp:{MPserver for DMZ FQDN} SMSSITECODE={our site code} FSP={MP for our regular domain}
* I have added the IP and hostname of our MP DMZ server into our Hosts file, so the workgroup machine can resolve the hostname of the MP.
* Our networks team has confirmed that there are no ports or firewalling blocking communication between the DMZ workgroup machines and our SCCM infrastructure.
* We have used our Active Directory Certification Services to install a Personal certificate to allow communicate between the host machine and our SCOM infrastructure. SCOM talks to these machines without issue, but SCCM is not.
The repeating errors in LocationServices.log of our DMZ Workgroup machines are as follows:
Any tips on troubleshooting?