Name

Read only site system name selected to add site system roles to.

Specify a fully qualified domain name (FQDN) for this site system on the intranet. This is required for native mode and for publishing in DNS

Enables or cancels the intranet FQDN text box, which allows you to specify an intranet FQDN for the site system.

This option is recommended for native mode and if the site system is a management point that is publishing to Domain Name System (DNS).

If the site is in native mode, this requires public key infrastructure (PKI) certificates. Most PKI certificates use a FQDN as the subject name. If the certificate is using an intranet FQDN as the subject name, enter the same intranet FQDN in Configuration Manager. However, if the certificate is using a NetBIOS name for intranet communication, do not enter an intranet FQDN for site systems in Configuration Manager.

Specify an Internet-based fully qualified domain name for this site system

Enables or cancels the Internet FQDN text box, which allows you to specify an Internet FQDN for the site system if you are using Internet-based client management. This option is not required unless this site system will support Internet-based client management.

Use the site server's computer account to install this site system

The site server needs to authenticate on the site system to install, configure, and monitor site system roles. The most secure method of achieving this authentication is to use the site server's computer account if it is trusted by the site system. This trusted communication is automatically available in the following scenarios:

• The site system is in the same Active Directory forest as the site server.
  
  
• The site system is in a different Active Directory forest than the site server, but there is a forest trust in place.
  
  
• There is an external trust in place between the site system's domain and the site server's domain (with the site system's domain trusting the site server's domain).
  
  

If there is no trust mechanism in place between the two servers, you must use and configure a Microsoft Windows user account that is trusted on the site system server.

Use another account for installing this site system

Use this option if you cannot use the site server's computer account to authenticate to the site system.

You must also specify this option if you also select the option Allow only site server initiated data transfers from this system site on this tab.

Set

Click to open the Windows User Account dialog box to specify the Windows user account and password to use to authenticate the site server to the site system server.

Note
Universal Principle Names (UPNs) are not supported in Configuration Manager 2007, so the name format must be specified as domain\user.

Enable this site system as a protected site system

Enables or cancels the option to prevent clients from accessing the site system unless they are located within the configured protected boundaries of the site system. If a site system is configured as a protected site system and no boundaries are specified, clients will be unable to access the site system. This option applies only to site systems that are configured as distribution points and state migration points.

Protected site systems cannot be configured for connections from clients over the Internet.

Allow only site server initiated data transfers from this site system

By default, site systems initiate connections to the site server to send status information to the site. Enabling this option results in the site server initiating the connection to site systems that are configured for site system roles that are supported across forests. This configuration might introduce some latency in sending status messages, with a decrease in performance on the site server.

The site system roles that support this option are the following:

• Management point
  
  
• Distribution point
  
  
• Software update point
  
  
• Fallback status point
  
  

Enable this option only if these site system servers are in different forests than the site server and you need to control the direction of connections between the servers. The most likely scenario for this requirement is when the site is configured for Internet-based client management and the site system is in the perimeter network with the site server on the intranet.

Important
You must use the Site System Installation Account with this option, and you cannot use the site server's computer account even if a trust exists.

Previous

Goes to the previous page of the wizard.

Next

Goes to the next page of the wizard.

Cancel

Discards the settings, and exits the wizard.