SlideShare a Scribd company logo

Llunitebe2018 configuring a cmg in config mgr cb

Kenny Buntinx, profile picture
Kenny Buntinx

The document discusses how to use the Cloud Management Gateway (CMG) in Configuration Manager to manage internet-connected clients. It provides an overview of CMG capabilities and scenarios, prerequisites for implementing a CMG, how the CMG works, CMG costs, certificate requirements, steps for adding a CMG and configuring the necessary site system roles, and how to use the CMG to manage clients over the internet. The presentation includes demonstrations of configuring a CMG and using it to manage clients.

Technology
1 of 37
Download to read offline
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
#Scugbe #LLUniteBE #BEEMUG Manage Configuration Manager internet clients with the Cloud Management Gateway Gerry Hampson Senior Consultant Blog: gerryhampsoncm.blogspot.com Twitter: @GerryHampson
Thanks to our event sponsors Silver Platinum #Scugbe #LLUniteBE #BEEMUG
About me @GerryHampson Blog: gerryhampsoncm.blogspot.com
The Cloud-Management-Gateway (my version) ----------
Managing clients with the CMG Adding the CMGIntroduction to the CMG Agenda Using the CMGPrerequisites for the CMG Implementing the Cloud Management Gateway Planning for the Cloud Management Gateway Certificates for the CMG
Introduction to the Cloud Management Gateway
• Traditional AD joined Windows clients • Windows 10 Azure AD joined clients • Install the ConfigMgr client over the internet • Software updates and endpoint protection • Inventory and client status • Compliance settings • Software distribution • Windows 10 in-place upgrade task sequence Typical CMG scenarios
• ARM-based deployment • Multiple instances • Support for 96,000 clients per CMG instance • Support for Management Point & Software Update Point What can CMG deliver?
• DP hosted in Azure • Optional component in CMG scenario • Cloud DP features • CMG and CDP co-exist • Intranet and internet based • Fallback content location • Distribution Point Groups • Content encrypted • Scales well • Cloud DP limitations • PXE • Packages that run directly • Pre-staged/App-V streaming • Pull DPs Cloud Distribution Point
How does CMG work?
Domain Contoller Certificate Authority INTRANET
Primary Site Server Management Point Distribution Point Domain Contoller Service Connection Point Certificate Authority Software Update Point INTRANET
Primary Site Server Management Point Distribution Point Domain Contoller Service Connection Point Certificate Authority Software Update Point Cloud Management Gateway Connection Point INTRANET
Primary Site Server Management Point Distribution Point Domain Contoller Service Connection Point Certificate Authority Software Update Point Cloud Management Gateway Connection Point INTRANET Cloud Management Gateway Cloud DP
Primary Site Server Management Point Distribution Point Domain Contoller Service Connection Point Certificate Authority Software Update Point Cloud Management Gateway Connection Point INTRANET Cloud Management Gateway Cloud DP INTERNET
Primary Site Server Management Point Distribution Point Domain Contoller Service Connection Point Certificate Authority Software Update Point Cloud Management Gateway Connection Point INTRANET Cloud Management Gateway Cloud DP INTERNET
Primary Site Server Management Point Distribution Point Domain Contoller Service Connection Point Certificate Authority Software Update Point Cloud Management Gateway Connection Point INTRANET Cloud Management Gateway Cloud DP INTERNET
Primary Site Server Management Point Distribution Point Domain Contoller Service Connection Point Certificate Authority Software Update Point Cloud Management Gateway Connection Point INTRANET Cloud Management Gateway Cloud DP INTERNET
Primary Site Server Management Point Distribution Point Domain Contoller Service Connection Point Certificate Authority Software Update Point Cloud Management Gateway Connection Point INTRANET Cloud Management Gateway Cloud DP INTERNET
Primary Site Server Management Point Distribution Point Domain Contoller Service Connection Point Certificate Authority Software Update Point Cloud Management Gateway Connection Point INTRANET Cloud Management Gateway Cloud DP INTERNET
• Virtual Machine • Standard A2 VM • Varies by region • Outbound data transfer • Data egress • Content storage • No cost for software updates • CMG requires CDP for other content CMG Cost
Prerequisites for the Cloud Management Gateway
• Windows clients • ConfigMgr site (1610 or later) • Service Connection Point (Online mode) • Cloud Management Gateway Connection Point • Internal Certificate Authority (autoenrollment) • Public SSL certificate • Externally routable domain • Cloud Service name • Access to DNS records • Azure subscription General requirements
• No inbound • Outbound • 443 for a single VM • 10124 & 10125 for 2 VMs • 10124, 10125 & 10126 for 3 VMs • Etc up to 16 (10124 up to 10139) Firewall Ports
Cloud Service name Demo
Certificates for the Cloud Management Gateway
• Cloud Management Gateway • Azure Management Certificate • Cloud Management Gateway Certificate • Internal root certificate • Cloud Distribution Point (optional) • Azure Management Certificate • Cloud Distribution Point Certificate • Clients • Client Authentication Certificate • CMG Connection Point • Client Authentication Certificate Certificates
Certificates Demo
Adding the Cloud Management Gateway
Create CMG & CMG Connection Point Demo
Configuring and monitoring the Cloud Management Gateway
• Configure MP to allow CMG traffic • Configure SUP to allow CMG traffic • CMG Connection Analyser • Cloud Management dashboard Using the CMG
Configure MP and SUP CMG Analyser, Cloud Management dashboard Demo
Managing clients with the Cloud Management Gateway
Client settings, Windows 10 client, tips and tricks Demo
Cloud Management Gateway issue
Thanks to our event sponsors Silver Platinum #Scugbe #LLUniteBE #BEEMUG

More Related Content

PPTX
SCCM Intune Windows 10 Co Management Architecture Decisions
Anoop Nair
 
PPTX
Design & Secure Your Cloud Infrastructure
Anoop Nair
 
PPTX
SCCM CDP Cloud Distribution Point and Cloud Manage Gateway Troubleshooting Tips
Anoop Nair
 
PPTX
Cloud Management Gateway Architecture (CMG) – Modern device management
vimaldas8
 
PPTX
SCCM Cloud Management Gateway
Anoop Nair
 
PDF
Real User Monitoring: Getting Real Data from Real Users in the Real World - S...
Akamai Technologies
 
PDF
Amazon Connect를 이용한 장애 대응도구 개발기
창훈 현
 
PDF
Complex architectures for authentication and authorization on AWS
Boyan Dimitrov
 
SCCM Intune Windows 10 Co Management Architecture Decisions
Anoop Nair
 
Design & Secure Your Cloud Infrastructure
Anoop Nair
 
SCCM CDP Cloud Distribution Point and Cloud Manage Gateway Troubleshooting Tips
Anoop Nair
 
Cloud Management Gateway Architecture (CMG) – Modern device management
vimaldas8
 
SCCM Cloud Management Gateway
Anoop Nair
 
Real User Monitoring: Getting Real Data from Real Users in the Real World - S...
Akamai Technologies
 
Amazon Connect를 이용한 장애 대응도구 개발기
창훈 현
 
Complex architectures for authentication and authorization on AWS
Boyan Dimitrov
 

What's hot (20)

PDF
6. DISZ - Webalkalmazások skálázhatósága a Google Cloud Platformon
Márton Kodok
 
PDF
Introduction to Google Cloud Platform
Opsta
 
PDF
Gone in 4 seconds web performance optimization
Yohan Totting
 
PPTX
RedisConf17 - Dynomite - Making Non-distributed Databases Distributed
Redis Labs
 
PPTX
Microservices in the Apache Kafka Ecosystem
confluent
 
PDF
Building Event Driven Services with Apache Kafka and Kafka Streams - Devoxx B...
Ben Stopford
 
PDF
Layer 7 Observability and Centralized Configuration with Consul Service Mesh
Mitchell Pronschinske
 
PPTX
What's new in NGINX Plus R9
NGINX, Inc.
 
PPTX
Spring Cloud: API gateway upgrade & configuration in the cloud
Orkhan Gasimov
 
PDF
How to build 1000 microservices with Kafka and thrive
Natan Silnitsky
 
PDF
Advanced Caching Patterns used by 2000 microservices - Api World
Natan Silnitsky
 
PDF
Event Streaming with Kafka Streams and Spring Cloud Stream | Soby Chacko, VMware
HostedbyConfluent
 
PDF
Battle-tested event-driven patterns for your microservices architecture - Sca...
Natan Silnitsky
 
PPSX
SignalR With ASP.Net part1
Esraa Ammar
 
PPT
Getting started with ASPNET Core SignalR
Nemi Chand
 
PDF
10 essentials steps for kafka streaming services
inovia
 
PPTX
Complex architectures for authentication and authorization on AWS
Boyan Dimitrov
 
PDF
Building and Scaling a WebSockets Pubsub System
Kapil Reddy
 
PPSX
Signalr with ASP.Net part2
Esraa Ammar
 
PPTX
Real time web with SignalR
Alessandro Melchiori
 
6. DISZ - Webalkalmazások skálázhatósága a Google Cloud Platformon
Márton Kodok
 
Introduction to Google Cloud Platform
Opsta
 
Gone in 4 seconds web performance optimization
Yohan Totting
 
RedisConf17 - Dynomite - Making Non-distributed Databases Distributed
Redis Labs
 
Microservices in the Apache Kafka Ecosystem
confluent
 
Building Event Driven Services with Apache Kafka and Kafka Streams - Devoxx B...
Ben Stopford
 
Layer 7 Observability and Centralized Configuration with Consul Service Mesh
Mitchell Pronschinske
 
What's new in NGINX Plus R9
NGINX, Inc.
 
Spring Cloud: API gateway upgrade & configuration in the cloud
Orkhan Gasimov
 
How to build 1000 microservices with Kafka and thrive
Natan Silnitsky
 
Advanced Caching Patterns used by 2000 microservices - Api World
Natan Silnitsky
 
Event Streaming with Kafka Streams and Spring Cloud Stream | Soby Chacko, VMware
HostedbyConfluent
 
Battle-tested event-driven patterns for your microservices architecture - Sca...
Natan Silnitsky
 
SignalR With ASP.Net part1
Esraa Ammar
 
Getting started with ASPNET Core SignalR
Nemi Chand
 
10 essentials steps for kafka streaming services
inovia
 
Complex architectures for authentication and authorization on AWS
Boyan Dimitrov
 
Building and Scaling a WebSockets Pubsub System
Kapil Reddy
 
Signalr with ASP.Net part2
Esraa Ammar
 
Real time web with SignalR
Alessandro Melchiori
 
Ad

Similar to Llunitebe2018 configuring a cmg in config mgr cb (14)

PPTX
Cloud Management Gateway for SCCMZ .pptx
Satyam340172
 
PPTX
Cloud Management Gateway_Implemented.pptx
Satyam340172
 
PPTX
Practical Guide to Cloud Management Platforms
Cloud Standards Customer Council
 
PDF
What Every MSP Needs to Know for Cloud Success
RightScale
 
PDF
How a CMP Can Help You Right Now
RightScale
 
PDF
7 Common Questions About a Cloud Management Platform
RightScale
 
PDF
Cloud Management for MSPs
RightScale
 
PDF
Guide to managed cloud services_ Types, use cases & how to ensure success.pdf
mohitd6
 
PPTX
Configure cloud services Presentation.pptx
RoyTari
 
PPTX
Is Citrix Cloud Enterprise Ready? Best Practices to Get the Most Out of Citri...
eG Innovations
 
PPTX
RapidScale Product Training
RapidScale
 
PPTX
Cloud managed services
Devopstech
 
PPTX
Mule management console
Achyuta Lakshmi
 
PDF
MSP_Playbook_SI_070817_v2.pdf
vishnu179820
 
Cloud Management Gateway for SCCMZ .pptx
Satyam340172
 
Cloud Management Gateway_Implemented.pptx
Satyam340172
 
Practical Guide to Cloud Management Platforms
Cloud Standards Customer Council
 
What Every MSP Needs to Know for Cloud Success
RightScale
 
How a CMP Can Help You Right Now
RightScale
 
7 Common Questions About a Cloud Management Platform
RightScale
 
Cloud Management for MSPs
RightScale
 
Guide to managed cloud services_ Types, use cases & how to ensure success.pdf
mohitd6
 
Configure cloud services Presentation.pptx
RoyTari
 
Is Citrix Cloud Enterprise Ready? Best Practices to Get the Most Out of Citri...
eG Innovations
 
RapidScale Product Training
RapidScale
 
Cloud managed services
Devopstech
 
Mule management console
Achyuta Lakshmi
 
MSP_Playbook_SI_070817_v2.pdf
vishnu179820
 
Ad

More from Kenny Buntinx (20)

PDF
Llunitebe2018 best of_two_worlds-manage.your.servers.the.azure.or.configmgr.way
Kenny Buntinx
 
PDF
Llunitebe2018 worst config mgr cb mistakes
Kenny Buntinx
 
PDF
Llunitebe2018 windows 10 security features
Kenny Buntinx
 
PDF
Llunitebe2018 ten practical tips to secure your corporate data with microsoft...
Kenny Buntinx
 
PDF
Llunitebe2018 rdmi in practice
Kenny Buntinx
 
PDF
Llunitebe2018 implement modern management as like brewing a beer
Kenny Buntinx
 
PDF
SCUGBE_Lowlands_Unite_2017_1E tachyon
Kenny Buntinx
 
PDF
SCUGBE_Lowlands_Unite_2017_Rest azured microsoft cloud demystified
Kenny Buntinx
 
PDF
SCUGBE_Lowlands_Unite_2017_Protecting cloud identities
Kenny Buntinx
 
PDF
SCUGBE_Lowlands_Unite_2017_Managing Windows Containers with Docker
Kenny Buntinx
 
PDF
SCUGBE_Lowlands_Unite_2017_Servicing your new Windows workplace like a boss.
Kenny Buntinx
 
PDF
SCUGBE_Lowlands_Unite_2017_Ransomware vs. SysAdmin
Kenny Buntinx
 
PDF
SCUGBE_Lowlands_Unite_2017_How to manage office 2016 on today’s clients
Kenny Buntinx
 
PDF
SCUGBE_Lowlands_Unite_2017_Achieving productivity without an on premises infr...
Kenny Buntinx
 
PPTX
ECMDay2015 - Kim Oppalfens – Microsoft System Center Configuration Manager: H...
Kenny Buntinx
 
PDF
ECMDay2015 - Nico Sienaert – Enterprise Mobility Suite – What it’s all about?
Kenny Buntinx
 
PPTX
ECMDay2015 - Kent Agerlund – Configuration Manager 2012 – A Site Review
Kenny Buntinx
 
PPTX
ECMDay2015 - Kenny Buntinx - Tim De Keukelaere - Armoring your mobile workfor...
Kenny Buntinx
 
PPTX
ECMDay2015 - Kenny Buntinx - Tim De Keukelaere - Keynote
Kenny Buntinx
 
PDF
ECMDay2015 - Peter Daalmans – Master your Mac OS X Operating System with Conf...
Kenny Buntinx
 
Llunitebe2018 best of_two_worlds-manage.your.servers.the.azure.or.configmgr.way
Kenny Buntinx
 
Llunitebe2018 worst config mgr cb mistakes
Kenny Buntinx
 
Llunitebe2018 windows 10 security features
Kenny Buntinx
 
Llunitebe2018 ten practical tips to secure your corporate data with microsoft...
Kenny Buntinx
 
Llunitebe2018 rdmi in practice
Kenny Buntinx
 
Llunitebe2018 implement modern management as like brewing a beer
Kenny Buntinx
 
SCUGBE_Lowlands_Unite_2017_1E tachyon
Kenny Buntinx
 
SCUGBE_Lowlands_Unite_2017_Rest azured microsoft cloud demystified
Kenny Buntinx
 
SCUGBE_Lowlands_Unite_2017_Protecting cloud identities
Kenny Buntinx
 
SCUGBE_Lowlands_Unite_2017_Managing Windows Containers with Docker
Kenny Buntinx
 
SCUGBE_Lowlands_Unite_2017_Servicing your new Windows workplace like a boss.
Kenny Buntinx
 
SCUGBE_Lowlands_Unite_2017_Ransomware vs. SysAdmin
Kenny Buntinx
 
SCUGBE_Lowlands_Unite_2017_How to manage office 2016 on today’s clients
Kenny Buntinx
 
SCUGBE_Lowlands_Unite_2017_Achieving productivity without an on premises infr...
Kenny Buntinx
 
ECMDay2015 - Kim Oppalfens – Microsoft System Center Configuration Manager: H...
Kenny Buntinx
 
ECMDay2015 - Nico Sienaert – Enterprise Mobility Suite – What it’s all about?
Kenny Buntinx
 
ECMDay2015 - Kent Agerlund – Configuration Manager 2012 – A Site Review
Kenny Buntinx
 
ECMDay2015 - Kenny Buntinx - Tim De Keukelaere - Armoring your mobile workfor...
Kenny Buntinx
 
ECMDay2015 - Kenny Buntinx - Tim De Keukelaere - Keynote
Kenny Buntinx
 
ECMDay2015 - Peter Daalmans – Master your Mac OS X Operating System with Conf...
Kenny Buntinx
 

Recently uploaded (20)

PDF
Advanced IT Governance
University of Hertfordshire
 
PDF
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
PDF
The Rise and Fall of 3GPP – Time for a Sabbatical?
3G4G
 
PPTX
PA Analog/Digital System: The Backbone of Modern Surveillance and Communication
AVTRON Technologies LLC
 
PDF
[발표본] 너의 과제는 클라우드에 있어_KTDS_김동현_20250524.pdf
ssuserf8b8bd1
 
PDF
Advanced Soft Computing BINUS July 2025.pdf
University of Hertfordshire
 
PDF
KodekX | Application Modernization Development
KodekX
 
PDF
Peak of Data & AI Encore- AI for Metadata and Smarter Workflows
Safe Software
 
PPTX
VMware vSphere Foundation How to Sell Presentation-Ver1.4-2-14-2024.pptx
blackmambaettijean
 
PDF
Blue Purple Modern Animated Computer Science Presentation.pdf.pdf
Akar16
 
PPT
“AI and Expert System Decision Support & Business Intelligence Systems”
ZubinRadhakrishnan
 
PDF
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
PDF
Bridging biosciences and deep learning for revolutionary discoveries: a compr...
IAESIJAI
 
PDF
Diabetes mellitus diagnosis method based random forest with bat algorithm
IAESIJAI
 
PDF
Network Security Unit 5.pdf for BCA BBA.
Serpent6
 
PDF
Spectral efficient network and resource selection model in 5G networks
IAESIJAI
 
PDF
Chapter 3 Spatial Domain Image Processing.pdf
Getnet Tigabie Askale -(GM)
 
PPTX
Effective Security Operations Center (SOC) A Modern, Strategic, and Threat-In...
ReZa AdineH
 
PDF
Optimiser vos workloads AI/ML sur Amazon EC2 et AWS Graviton
Julien SIMON
 
PDF
Dropbox Q2 2025 Financial Results & Investor Presentation
Dropbox
 
Advanced IT Governance
University of Hertfordshire
 
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
The Rise and Fall of 3GPP – Time for a Sabbatical?
3G4G
 
PA Analog/Digital System: The Backbone of Modern Surveillance and Communication
AVTRON Technologies LLC
 
[발표본] 너의 과제는 클라우드에 있어_KTDS_김동현_20250524.pdf
ssuserf8b8bd1
 
Advanced Soft Computing BINUS July 2025.pdf
University of Hertfordshire
 
KodekX | Application Modernization Development
KodekX
 
Peak of Data & AI Encore- AI for Metadata and Smarter Workflows
Safe Software
 
VMware vSphere Foundation How to Sell Presentation-Ver1.4-2-14-2024.pptx
blackmambaettijean
 
Blue Purple Modern Animated Computer Science Presentation.pdf.pdf
Akar16
 
“AI and Expert System Decision Support & Business Intelligence Systems”
ZubinRadhakrishnan
 
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
Bridging biosciences and deep learning for revolutionary discoveries: a compr...
IAESIJAI
 
Diabetes mellitus diagnosis method based random forest with bat algorithm
IAESIJAI
 
Network Security Unit 5.pdf for BCA BBA.
Serpent6
 
Spectral efficient network and resource selection model in 5G networks
IAESIJAI
 
Chapter 3 Spatial Domain Image Processing.pdf
Getnet Tigabie Askale -(GM)
 
Effective Security Operations Center (SOC) A Modern, Strategic, and Threat-In...
ReZa AdineH
 
Optimiser vos workloads AI/ML sur Amazon EC2 et AWS Graviton
Julien SIMON
 
Dropbox Q2 2025 Financial Results & Investor Presentation
Dropbox
 

Llunitebe2018 configuring a cmg in config mgr cb

  • 1. #Scugbe #LLUniteBE #BEEMUG Manage Configuration Manager internet clients with the Cloud Management Gateway Gerry Hampson Senior Consultant Blog: gerryhampsoncm.blogspot.com Twitter: @GerryHampson
  • 2. Thanks to our event sponsors Silver Platinum #Scugbe #LLUniteBE #BEEMUG
  • 4. The Cloud-Management-Gateway (my version) ----------
  • 5. Managing clients with the CMG Adding the CMGIntroduction to the CMG Agenda Using the CMGPrerequisites for the CMG Implementing the Cloud Management Gateway Planning for the Cloud Management Gateway Certificates for the CMG
  • 6. Introduction to the Cloud Management Gateway
  • 7. • Traditional AD joined Windows clients • Windows 10 Azure AD joined clients • Install the ConfigMgr client over the internet • Software updates and endpoint protection • Inventory and client status • Compliance settings • Software distribution • Windows 10 in-place upgrade task sequence Typical CMG scenarios
  • 8. • ARM-based deployment • Multiple instances • Support for 96,000 clients per CMG instance • Support for Management Point & Software Update Point What can CMG deliver?
  • 9. • DP hosted in Azure • Optional component in CMG scenario • Cloud DP features • CMG and CDP co-exist • Intranet and internet based • Fallback content location • Distribution Point Groups • Content encrypted • Scales well • Cloud DP limitations • PXE • Packages that run directly • Pre-staged/App-V streaming • Pull DPs Cloud Distribution Point
  • 12. Primary Site Server Management Point Distribution Point Domain Contoller Service Connection Point Certificate Authority Software Update Point INTRANET
  • 13. Primary Site Server Management Point Distribution Point Domain Contoller Service Connection Point Certificate Authority Software Update Point Cloud Management Gateway Connection Point INTRANET
  • 14. Primary Site Server Management Point Distribution Point Domain Contoller Service Connection Point Certificate Authority Software Update Point Cloud Management Gateway Connection Point INTRANET Cloud Management Gateway Cloud DP
  • 15. Primary Site Server Management Point Distribution Point Domain Contoller Service Connection Point Certificate Authority Software Update Point Cloud Management Gateway Connection Point INTRANET Cloud Management Gateway Cloud DP INTERNET
  • 16. Primary Site Server Management Point Distribution Point Domain Contoller Service Connection Point Certificate Authority Software Update Point Cloud Management Gateway Connection Point INTRANET Cloud Management Gateway Cloud DP INTERNET
  • 17. Primary Site Server Management Point Distribution Point Domain Contoller Service Connection Point Certificate Authority Software Update Point Cloud Management Gateway Connection Point INTRANET Cloud Management Gateway Cloud DP INTERNET
  • 18. Primary Site Server Management Point Distribution Point Domain Contoller Service Connection Point Certificate Authority Software Update Point Cloud Management Gateway Connection Point INTRANET Cloud Management Gateway Cloud DP INTERNET
  • 19. Primary Site Server Management Point Distribution Point Domain Contoller Service Connection Point Certificate Authority Software Update Point Cloud Management Gateway Connection Point INTRANET Cloud Management Gateway Cloud DP INTERNET
  • 20. Primary Site Server Management Point Distribution Point Domain Contoller Service Connection Point Certificate Authority Software Update Point Cloud Management Gateway Connection Point INTRANET Cloud Management Gateway Cloud DP INTERNET
  • 21. • Virtual Machine • Standard A2 VM • Varies by region • Outbound data transfer • Data egress • Content storage • No cost for software updates • CMG requires CDP for other content CMG Cost
  • 22. Prerequisites for the Cloud Management Gateway
  • 23. • Windows clients • ConfigMgr site (1610 or later) • Service Connection Point (Online mode) • Cloud Management Gateway Connection Point • Internal Certificate Authority (autoenrollment) • Public SSL certificate • Externally routable domain • Cloud Service name • Access to DNS records • Azure subscription General requirements
  • 24. • No inbound • Outbound • 443 for a single VM • 10124 & 10125 for 2 VMs • 10124, 10125 & 10126 for 3 VMs • Etc up to 16 (10124 up to 10139) Firewall Ports
  • 26. Certificates for the Cloud Management Gateway
  • 27. • Cloud Management Gateway • Azure Management Certificate • Cloud Management Gateway Certificate • Internal root certificate • Cloud Distribution Point (optional) • Azure Management Certificate • Cloud Distribution Point Certificate • Clients • Client Authentication Certificate • CMG Connection Point • Client Authentication Certificate Certificates
  • 30. Create CMG & CMG Connection Point Demo
  • 31. Configuring and monitoring the Cloud Management Gateway
  • 32. • Configure MP to allow CMG traffic • Configure SUP to allow CMG traffic • CMG Connection Analyser • Cloud Management dashboard Using the CMG
  • 33. Configure MP and SUP CMG Analyser, Cloud Management dashboard Demo
  • 34. Managing clients with the Cloud Management Gateway
  • 35. Client settings, Windows 10 client, tips and tricks Demo
  • 37. Thanks to our event sponsors Silver Platinum #Scugbe #LLUniteBE #BEEMUG