MDM Distributed Configuration Topology
2/9/2009
The distributed approach to deploying System Center Mobile Device Manager provides a more secure solution than an integrated configuration. However, the distributed deployment is not as scalable as the recommended scaled-out distributed configuration described in MDM Scaled-Out Distributed Configuration Topology.
Note
A distributed configuration includes a single MDM instance. You can deploy multiple instances of MDM in different configurations. For more information about deploying multiple MDM instances, see MDM Multiple Instance Topologies.
The following illustration shows an MDM distributed configuration topology.
.gif "Dd261876.577161c9-7829-4124-b9eb-2acf9f29fc71(en-us,TechNet.10).gif")
The following are highlighted by number in the diagram:
- 1: Secure Sockets Layer–based Windows Mobile device traffic to MDM Enrollment Server
- 2: Internet Protocol security–based managed device traffic to MDM Gateway Server and Secure Sockets Layer–based managed device traffic to MDM Device Management Server
Note
For each MDM topology, the Active Directory Domain Services, certification authority server, the computer that is running Microsoft SQL Server, MDM Device Management Server, and MDM Enrollment Server must be in the same geographical site. However, servers that are running MDM Gateway Server do not have to be in the same geographical site. Active Directory, the certification authority server, the computer that is running SQL Server, MDM Device Management Server, and MDM Enrollment Server must be in the same domain.