This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(0, 84%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EB%3C/text%3E%3C/svg%3E)
Hi All ,
I have a primary site and 5 DPs, one management point is installed on the primary site and it is configured for HTTP and intranet clients
Now I'm planning to deploy Cloud management gateway so I will install another management point role on one of the distribution points and configure it for HTTPS and to serve only clients connected over the internet.
Will that scenario break anything ? I never used two management points in the same environment so I'm just concerned.
Thanks
Tag not monitored by Microsoft.
Answer accepted by question author
While valid, this is not necessary. Assuming you will use ConfigMgr issued tokens or the devices have an Azure identity (because they are either hybrid Azure AD or Azure AD joined), then you can enable enhanced HTTP on your existing MP: https://learn.microsoft.com/en-us/mem/configmgr/core/plan-design/hierarchy/enhanced-http