There might be occasions when you want to remove the provisioning information for an AMT-based computer, such as when you no longer want the computer managed out of band by Configuration Manager 2007 but by another AMT solution instead. Another example of when you might want to remove provisioning information for an AMT-based computer is when the computer is no longer trusted by the Configuration Manager administrator and its associated certificates and Active Directory account should no longer be available for use.
 Note |
|---|
| The information in this topic applies only to Configuration Manager 2007 SP1 and later. |
The following options are available for removing provisioning information for the computer:
- You can remove the configuration data for the
management controller (including whether IDE redirection and serial
over LAN are enabled, network pings are supported, and the Web
interface is enabled) but keep identification information about the
computer (including its host name, IP address, and DNS suffix).
- You can remove both the configuration data
and the identification information from the computer.
Additionally, the following actions are performed when you remove provisioning information:
- The primary site server revokes the
certificate that was issued to the AMT-based computer when it was
provisioned. The revocation reason is Superseded.
- The primary site server removes the Active
Directory object that was published to Active Directory Domain
Services.
- The primary site server deletes the SPN for
the AMT-based computer.
By default, AMT-based computers will automatically reprovision with Configuration Manager if you have configured out of band or in-band AMT provisioning. (For example, AMT-based computers are running the Configuration Manager 2007 SP1 or later client and they are members of a collection configured with the setting Enable Automatic Out of Band Management Controller Provisioning). To prevent automatic provisioning, select the option Disable automatic out of band provisioning (Configuration Manager 2007 SP1) or Disable automatic provisioning (Configuration Manager 2007 SP2) when you remove provisioning information for the computer.
| Note |
|---|
| If you disable automatic reprovisioning and later want to automatically provision these AMT-based computers, right-click the resource, click Out of Band Management, and then click Enable Automatic Provisioning. If you reassign the client to another Configuration Manager 2007 hierarchy that is configured for AMT provisioning, the automatic AMT provisioning status of disabled is not carried forward to the new hierarchy. |
Use the following procedure to remove provisioning information for an AMT-based computer if you no longer want to manage it out of band with Configuration Manager 2007. After completing the procedure, to confirm that this action is successful, check that the AMT status for the computer changes from Provisioned to Not Provisioned. This check is particularly important if you are removing the provisioning information because the AMT-based computer is no longer trusted. If the status remains as Provisioned, you must manually delete the associated AMT account in Active Directory Domain Services and manually revoke any out of band management certificates that have been issued to the computer. For more information about managing AMT-based computers that are no longer trusted, see About Blocking Clients and Out of Band Management.
Removing provisioning information from an AMT-based computer connected to 802.1X wired or wireless networks in Configuration Manager 2007 SP2 is supported.
To remove provisioning information for an AMT-based computer with the Configuration Manager console
-
In the Configuration Manager console, navigate to System Center Configuration Manager / Site Database / Computer Management / Collections.
-
From one of the collections, right-click one or multiple AMT-based computers, click Out of Band Management, and then click Delete Provisioning Data from Management Controller Memory.
-
Select a data removal option.
-
If you want to prevent the AMT-based computer from automatically re-provisioning, select the option Disable automatic out of band provisioning (Configuration Manager 2007 SP1) or Disable automatic provisioning (Configuration Manager 2007 SP2).
-
Click OK.