Problem solve Get help with specific problems with your technologies, process and projects.

Can a single SMS site span multiple AD forests?

If I have an SMS site hierarchy that spans two forests with a transitive external trust between both and with the forest functional level set to Windows Server 2003 interim, can it exist in a single SMS site hierarchy provided that WINS is enabled and has the SLP record created? If so, do I need a separate SMS primary site in each forest?
A single SMS site cannot span multiple Active Directory forests, although it can span multiple domains within a single forest. All SMS site systems must be in the same Active Directory forest as the SMS site server. Be aware of limitations across forests and considerations in the following areas when you design your SMS hierarchy:
  • Communications within an SMS site
  • Site-to-site communications
  • Client communications
  • Secure key exchange
Communication between an SMS site server and its site systems is not supported across forests. Communications across forests work in SMS if the following conditions are met:
  • You are using the Microsoft Windows Server 2003 family
  • The forest functional level is set to Windows Server 2003
  • SMS is running in advanced security mode
  • The forests are configured with a transitive trust

This was last published in July 2004

Dig Deeper on Microsoft Active Directory Design and Administration

Have a question for an expert?

Please add a title for your question

Get answers from a TechTarget expert on whatever's puzzling you.

You will be able to add details on the next page.

Start the conversation

Send me notifications when other members comment.

By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Please create a username to comment.