Has anyone successfully implemented a full Azure instance of SCCM

Question

Hi All,

Has anyone implemented a full Azure instance of SCCM? I would assuming Domain services would have to be in azure and then using a CMG as the main portal for client communication you could put a lot of the loads on Intune. I’ve been pondering this for a while and was wondering if anyone has actually implemented this

Posted by  Josh Holschen in HTMD FB Group

sccm cmg - HTMD Forum - Welcome to the world of Device Management! This is community build by Device Management Admins for Device Management Admins❤️ Ask your questions!! We are here to help you! - Has anyone successfully implemented a full Azure instance of SCCM

Answers ( 6 )

    0
    2024-05-13T15:35:08+05:30

    Replied by François Racine

    Josh Holschen With Windows 365, Microsoft said us, it is not possible using PXE and to minimize the traffic, we should put a DP in Azure. As we are using OSD, I don’t see how putting DPs in Azure would be helping us with PXE and OSD. We also have a SMP, will it be possible using the SMP from Azure for physical devices? So many questions and very few answers.

    Replied by John Cav

    i have my company SCCM infrastructure in Azure compute. Only thing on prem is my content library which i want to move to a blob storage and a few on-prem DPs. my CMG is very robust, just wish you can look at log files from machines without having them coming back on our network

    Replied by Herman van Drie

    Why?! Sounds expensive

    Replied by Kenny Go

    Yup we did this in my previous work place.

    0
    2024-05-13T15:31:48+05:30

    Replied by Josh Holschen

    François Racine to push clients already on the internet you’d need the CMG for policy.

    Replied by François Racine

    Josh Holschen Yes we already have a CMG for our internet clients. Not sure for the need if we would put our SCCM infra in Azure and for Windows 365 clients.

    Replied by Josh Holschen

    François Racine Nothing extra is needed. If you’re co managed you have tons of options for software, otherwise for updates you point everything to the cloud to save on drive space and use your cloud DP for software.

    0
    2024-05-13T15:28:30+05:30

    Replied by Josh Holschen

    Bryan Dam Did they use a CMG as well or would that not work with the servers in azure

    Replied by Bryan Dam

    Josh: See my other replies. You could go the CMG route (though that will make onboarding tricky) or use Express Route to connect them directly to your network.

    Replied by François Racine

    As the CMG is for the internet client why and how using a CMG? Not all applications are on our CMG.

    0
    2024-05-13T15:25:29+05:30

    Replied by François Racine

    Bryan Dam express route?

    Replied by Bryan Dam

    François Racine
    https://learn.microsoft.com/en-us/azure/expressroute/expressroute-introduction

    Replied by François Racine

    Bryan Dam Public peering for ExpressRoute is being retired on March 31, 2024

    Replied by Bryan Dam

    François, yes, I too read the document I linked to. The retirement of public peering doesn’t mean ExpressRoute is being retired. Private peering still exists and public peering has been replaced by Microsoft peering.
    Point being: if you’re going to have VMs in Azure and you want them connected to your LAN/WAN … it’s a thing you can totally do.

    0
    2024-05-13T15:21:31+05:30

    Replied by Thomas Mike

    Bryan Dam we extended our schemas for this? Lol

    Replied by François Racine

    Bryan Dam What about the Dps? How are you handling the PXE for your physical computers?

    Replied by Josh Holschen

    I mean every company I worked with that wanted to go ‘full cloud’ I said confiMgr would be going too as it all just works better co managed. So PXE would probably turn into hybrid joined autopilot with an SCCM task sequence back end

    Replied by Bryan Dam

    François Racine To be clear, I’m not actually doing this. I just know that people have. The answer to both your questions however is the same: Express Route. There is no such thing as the cloud, just someone else’s datacenter, so treat it as a co-lo.

    0
    2024-05-13T15:17:52+05:30

    More Details ConfigMgr SCCM Setup Co-Management CMG Azure Cloud Services
    https://www.anoopcnair.com/sccm-cmg-guide-step-step-azure-cloud-services/

    Replied by Bryan Dam

    Yea, I’ve seen it done and DJam confirmed for me that while ‘Domain Services for Azure’ may not be on the officially supported list, they had tested it and confirmed functionality. Because … you know … they were using Azure to run their own ConfigMgr environments.
    Beyond that, I know Kim Oppalffens and Tom Degree have done a PoC using DSfZ all on a single Azure VM

    Replied by Brandon Brown

    Bryan Dam TIL that extending the schema isn’t required for ConfigMgr, I was wondering how AADDS/EDS would work since schema extensions aren’t supported.

    Replied by Bryan Dam

    Brandon, right. They’re super convenient for getting the client to automagically configure itself and find your infrastructure. Though all of that can be set via install parameters on the client.

Leave an answer

Sorry, you do not have permission to answer to this question .