Placing SCOM 2022 Gateway Server

Bojan Zivkovic 486 Reputation points
2024-12-06T11:55:19.9866667+00:00

Hi, in case when Management Group (Management Server) is in one forest/domain and monitored servers are in other, untrusted forest/domain what is better - placing Gateway Server in the same forest/domain with Management Group (Management Server) or in the other, untrusted forest/domain.

Operations Manager
Operations Manager
A family of System Center products that provide infrastructure monitoring, help ensure the predictable performance and availability of vital applications, and offer comprehensive monitoring for datacenters and cloud, both private and public.
1,515 questions
0 comments No comments
{count} votes

Accepted answer
  1. XinGuo-MSFT 20,156 Reputation points
    2024-12-09T02:11:04.7233333+00:00

    Hi,

    It's generally better to place the Gateway Server in the untrusted forest/domain.

    By placing the Gateway Server in the untrusted domain, you only need to manage certificates and firewall rules for the Gateway Server and the Management Server, rather than for each individual agent.

    0 comments No comments

1 additional answer

Sort by: Most helpful
  1. Bojan Zivkovic 486 Reputation points
    2024-12-09T07:32:41.68+00:00

    Yep, I did exactly that and everything works like a charm.

    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.