Management Console and child domains in AD

Question

Greetings,

I've successfully installed and somewhat configured SEC 5.2 on a server at the root of our AD forest. It's updating fine and everything otherwise seems to be working well... except, when I attempt to install just the Management Console in a child domain, I'm unable to provide it with the information it needs.

During the attempted console install, I eventually get to a screen asking for the hostname of the central SEC server, and the account details created during initial install to access the database. The field to enter the user account information is not a text editable box, so the account must be selected from AD using the 'Browse' button. However, I find that I am restricted to only being able to search within that child domain. The forest root is not displayed. This is a problem, as the accounts required by SEC are at the forest root, where the server itself exists.

I'm assuming this isn't a case of the Management Console just not being installable in a child domain, but I'm pretty much at a full stop at figuring this out. Please assume routing issues are not an problem.

This thread was automatically locked due to age.

jak · Accepted Answer

Hi, Glad it's working.  If you have to deploy mutiple consoles, that could be done quite easily as per: http://www.sophos.com/en-us/support/knowledgebase/118548.aspx I suspect you can just specify the correct UPN as the SERVER_UPN property and it will just work. Sounds like the problem is just in the setup bootstrapper. Regards, Jak :37957