This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(150.4, 33%, 24%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EBZ%3C/text%3E%3C/svg%3E)
Hi, is it possible to deploy components of System Center Orchestrator in different domains/forests without trusts between them by doing some extra configuration steps? I have 3 forests completely isolated to one another hence I would like to know if automation of service requests (Web Front End app using Orchestrator Web Service to pass input parameters to Orchestrator Runbook) can work at all in environments like this. Service account Web Front End app IIS App Pool is running under must be an Orchestrator Admin and obviously in absence of trust that cannot be set up, so I am thinking of potentially placing some SCO components in the same forest/domain where Web Front End app instance is hosted whereas having some other components in untrusted forests - awful design but that is a price of not having forest trusts in place.