Intel vPro – Configuration – Part 5 – Configure Active Directory

vPro Series of Posts


Whew, made it this far ‘eh? Awesome. Nice work! Before we get started on SCS profiles, we need to do a bit of work in Active Directory. Don’t worry, it won’t take long.

AD OU and Groups

When Kerberos authentication is used with the AMT devices, each AMT device is going to need an actual computer account in AD. The Intel SCS service manages this for you, but it needs to have a specific OU to create the computers in. SCS also needs permission to create computer accounts in that OU.

Procedure

  1. In AD Users and Computers, create an OU to store AMT Objects. I recommend the name “AMT Objects”.
  2. Grant your SCS Server computer account ‘full control’ on this new OU.
  3. In AD Users and Computers, create a new security group connecting to AMT objects. I recommend ‘AMT Admins’.
  4. Assign your user account to be a member of the new group.

That’s it! Next stop: SCS Profile world.

Advertisements

11 thoughts on “Intel vPro – Configuration – Part 5 – Configure Active Directory

  1. Pingback: Intel vPro – Configuration – Part 6 – Basic SCS Profile | windowsmasher

  2. Pingback: Intel vPro – Configuration – Part 7 – Provisioning Your First System | windowsmasher

  3. Pingback: Intel vPro – Configuration – Part 8 – Adding Kerberos | windowsmasher

  4. Pingback: Intel vPro – Configuration – Part 9 – Adding TLS | windowsmasher

  5. Pingback: Intel vPro – Configuration – Part 1 – Architecture Overview | windowsmasher

  6. Pingback: Intel vPro – Configuration – Part 2 – PKI Installation | windowsmasher

  7. Pingback: Intel vPro – Configuration – Part 3 – PKI Configuration | windowsmasher

  8. Pingback: Intel vPro – Configuration – Part 4 – Install and Configure Intel SCS | windowsmasher

  9. Pingback: Intel vPro – The Basics of vPro | windowsmasher

  10. Pingback: Intel vPro – Configuration – Part 10 – SCCM Integration | windowsmasher

  11. I don’t know why i can’t use “RCSutils.exe /Certificate Add c:\Install_Files\scs-prov-cert.pfx /RCSuser NetworkService”, he give me back this message “Failed to add the certificate to the user certificate store – Error in (ProviderFailure:Error found with the supplied certificate. Access denied.”.
    Please what can i do ..?

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s