Академический Документы
Профессиональный Документы
Культура Документы
Stefan Stranger
Stefan Stranger
Microsoft
MSFT
40,135 Points 10 4 2
Recent Achievements
Gallery Contributor II New Wiki Commentator New Gallery Contributor
View Profile
0
0
While the rest of the System Center community is in Vegas for MMS2012 Im
helping customers with their questions about System Center Operations
Manager 2012. To be honest Im little jealous on all the people who are in Vegas
right now.
So I created some more detailed documentation on how to start monitoring your
non-domain members (workgroup servers in your DMZ) in OM2012.
It are still the same steps as in OM 2007 so if you already familiar with those
steps it would be easy for you.
I created a simple Diagram to have a high-level overview on which steps are
being executed on which machines.
Environment:
o
OM12 RTM
High-Level steps:
1. Download the Trusted Root (CA) certificate.
2. Import the Trusted Root (CA) certificate
3. Create a setup information file to use with the CertReq command-line
utility.
4. Create a request file.
5. Submit a request to the CA using the request file.
6. Approve the pending certificate request.
7. Retrieve the certificate from the CA.
8. Import the certificate into the certificate store.
9. Import the certificate into Operations Manager using MOMCertImport.
Step 1. Download the Trusted Root (CA) certificate
o
In the File Download dialog box, click Save and save the
certificate; for example, Trustedca.p7b.
[OM12MS02.demo.stranger]
Download a CA Certificate, certificate chain, or CRL
In the Run dialog box, type mmc, and then click OK.
On the File to Import page, click Browse and select the location
where you downloaded the CA certificate file, for example,
TrustedCA.p7b, select the file, and then click Open.
[OM12MS02.demo.stranger]
Open Certificates Local Computer account MMC:
In the Run dialog box, type Notepad, and then click OK.
Save the file with an .inf file name extension, for example,
RequestConfig.inf.
Close Notepad.
[OM12MS02.demo.stranger]
In the Run dialog box, type cmd, and then click OK.
[OM12MS02.demo.stranger]
[OM12MS02.demo.stranger]
Request a certificate
Advanced
[W2K8R2DC1.demo.stranger]
Click Pending Request in Certificate Authority
Click on Issue
In the File Download Security Warning dialog box, click Save, and
save the certificate; for example, as NewCertificate.cer.
On the Certificate Installed page, after you see the message that
Your new certificate has been successfully installed, close the
browser.
[OM12MS02.demo.stranger]
View status of pending certificate request
Save certificate
Download certificate
In the Run dialog box, type cmd, and then click OK.
[OM12MS02.demo.stranger]
In the Run dialog box, type cmd, and then click OK.
Note
On 64-bit computers, type cd\SupportTools\amd64
o
Press ENTER.
[OM12MS02.demo.stranger]
MOMCertImport /SubjectName OM12MS02.demo.stranger
Check if everything is ok
Open the certificate that you installed on management/gateway server.
Click on Details Tab and check the Serial Number.
Open registry
Tada!
Pre-reqs on DMZ server:
Make sure you have installed the OM12 Agent first before starting.
Create a setup information file to use with the CertReq commandline utility.
[OM12DWZ01.demo.dmz]
Step 1. Download the Trusted Root (CA) certificate.
End result:
Have fun at MMS for those who are in Vegas, and for those who are not, well