Hi

I have a dilemma with a customer.

They have a large user base and are moving/migrating from one AD domain to another. This is to address some issues around them making the move to the cloud.

They use MECM current branch but have had issues whilst migrating to the new domain.

They cannot connect to a device in the new domain such as using the remote tools “Remote Control” or “Remote Assistance”

They cannot deploy App-v applications through MECM to new domain user/group collection(s)

It seems the service accounts are not working within MECM Administration > Hierarchy Configuration > Active Directory Forest > Discovery & Publishing

Looking at this a few things pop into my mind.

1. Make sure appropriate client push and network accounts are configured for new domain.
2. Understanding how the AD forest/domain trust, would MECM need two way trust?
3. Would it be worth creating a new MECM server for new domain?
4. Would a CMG help with this?
5. If using same AD could boundary groups and AD discovery help with seperating management for devices/users? Would AD sites and services need to be used to create that seperation?

I was thinking maybe for new devices if they move to Intune and embrace new devices there.

Could really do with some expert guidence on this one as I am not sure what would be the best approach here.

Many Thanks