If you’ve got a full blown MP in your DMZ I know a way to make the Clients in the DMZ only use that MP, and not any MP
Keep in mind Clients will use any MP in the hierarchy based on Forest\Domain\Security Realm, time of day and wind direction and maybe depends on what shirt John Marcum is wearing at that particular moment, really :) Robert From: [email protected] [mailto:[email protected]] On Behalf Of Jason Wallace Sent: 03 July 2014 06:31 To: [email protected] Subject: Re: [mssms] CM 2012 Role in DMZ You'll need to have an account on that machine which is a local admin. You'll use this account for CM to be able to deploy the services. You will need to establish comms so that the site server can deploy to the DMZ machine. You'll likely want to configure site server initiated communications. This will cause the site server to poll the MP for inbox files rather than these being pushed through the firewall. For the SUP you will need to implement HTTPS (and should anyhow for other services) Regarding the MP you will need to provide access to the database. You can do this either by opening up the firewall, placing a replica in the DMZ or moving the MP behind the firewall and having some kind of proxy going on. For the catalog - not sure On 3 Jul 2014, at 06:08, "Roney George" <[email protected] <mailto:[email protected]> > wrote: Hi, I am planning for installing a MP, SUP, DP and App Catalog Role on a server in DMZ. Are there in How to document how this can be achieved on CM 2012 R2 , SQL 2012 R2 , and Roles are installed on Server 2012.
