Adding new Domain Controller to existing Domain

A

Alex Anderson

Hello Everyone,

There is no domain controller at one of my sites and all users at this
site login across a WAN link to the Domain controller at the other end. The
time has come to put a domain controller at this location to ease WAN
traffic. This DC will be part of the same Domain but just a different
context i.e. mynewsite.samedomain.com. How do I add this new DC to the
exiting forest and will I will be able to transfer my user accounts from one
OU to my new DC? I also have Exchange 2000 in place and was wondering if
adding a new domain controller at my new site, will this impact the exchange
server? Any white papers or links would be appreciated it.

Thank you
Alex Anderson
 
C

Cary Shultz [A.D. MVP]

Or simply setting up a second Site. There may or may not be a need to have
a child domain. Based on what Alex has written it would *seem* that a
second Site *might* be more appropriate than a child domain.

Cary
 
A

Alex Anderson

Cary,

That's what I was thinking. Now to set up a site domain, I know you
have to establish site links through sites and services, but how do you set
up the DC initially?

Thank you
Alex Anderson
 
C

Cary Shultz [A.D. MVP]

Alex,

You have to set up Sites in the Active Directory Sites and Services MMC (
ADSS MMC ), create a subnet for each subnet in your network and associate
each subnet with a Site. Intrasite Replication ( AD Replication between all
DCs in the same Site ) should take care of itself. Intersite Replication
( AD Replication between AD Sites ) needs to be configured with a Site Link.

Please take a look at the following MSKB Articles:

How to Create and Configure Sites in Active Directory
http://support.microsoft.com/?id=318480

How to Create and Configure a Site Link in Active Directory
http://support.microsoft.com/?id=316812

How to Configure Site Link Replication in Active Directory
http://support.microsoft.com/?id=321253

How to Move or Create A Global Catalog Server
http://support.microsoft.com/?id=313994

Description of Bridgehead Servers
http://support.microsoft.com/?id=271997

Role of the Intersite Topology in AD Replication
http://support.microsoft.com/?id=224815

Please note that I included the information on the Bridgehead Servers
because it is actually the Bridgehead Server in Site1 that replicates with
the Bridgehead Server in Site2. The Bridgehead Server is automatically
chosen. I would suggest that you allow this to happen automatically. If
you do decide that you will manually select a BHS please select at least two
in each Site.

HTH,

Cary
 
A

Alex Anderson

Cary,

So I would simply create a new domain at the my new site, call it
newdomain.existingdomain.com and then proceed setting up the new domain as
you described below?

Thank you
Alex Anderson
 
C

Cary Shultz [A.D. MVP]

Alex,

No! I should have explained things better. Sorry.

One of the many improvements of WIN2000 over WINNT is the ability to have a
single domain span several physical locations - all while keeping it all
under one roof ( ie, having only one domain ). You will continue to have
but one domain. However, instead of having only one site listed in your
ADSS ( by default, the Default-First-Site-Name ) you would have two! You
would have Domain Controllers in your first site ( the one that currently
exists ) and you would have Domain Controllers in your "new" site ( the one
that you are going to create ). However, it is still all
existingdomain.com!

This is why it is so important to set up AD Sites with their corresponding
Subnets correctly. You would want to make sure that ( at least ) one of the
DCs in each Site is a Global Catalog Server. You would want to make sure
that ( at least ) one of the DCs in each Site is a DNS Server.

Essentially the whole point is to control replication and user logons. You
want users in SiteB to authenticate against a DC in SiteB - and not against
a DC in SiteA ( over the WAN ).

Does that help you?

Cary
 
A

Alex Anderson

Cary,

This helps me a lot, the only thing I'm a little fuzzy is the creation
of the new domain controller at the new site. I have a newly installed
windows server 2000 at the new site, and now the time has come to dcpromo
the server. How do I proceed with the promotion process?

Thank you
Alex Anderson
 
C

Cary Shultz [A.D. MVP]

Alex,

All you are doing is "Adding a new Domain Controller to an existing domain".
Sorry, should have included this in my last post.

Glad to be of assistance.

HTH,

Cary

Alex Anderson said:
Cary,

This helps me a lot, the only thing I'm a little fuzzy is the creation
of the new domain controller at the new site. I have a newly installed
windows server 2000 at the new site, and now the time has come to dcpromo
the server. How do I proceed with the promotion process?

Thank you
Alex Anderson

Cary Shultz said:
Alex,

No! I should have explained things better. Sorry.

One of the many improvements of WIN2000 over WINNT is the ability to
Click to expand...
have
a
single domain span several physical locations - all while keeping it all
under one roof ( ie, having only one domain ). You will continue to have
but one domain. However, instead of having only one site listed in your
ADSS ( by default, the Default-First-Site-Name ) you would have two! You
would have Domain Controllers in your first site ( the one that currently
exists ) and you would have Domain Controllers in your "new" site ( the one
that you are going to create ). However, it is still all
existingdomain.com!

This is why it is so important to set up AD Sites with their corresponding
Subnets correctly. You would want to make sure that ( at least ) one of the
DCs in each Site is a Global Catalog Server. You would want to make sure
that ( at least ) one of the DCs in each Site is a DNS Server.

Essentially the whole point is to control replication and user logons. You
want users in SiteB to authenticate against a DC in SiteB - and not against
a DC in SiteA ( over the WAN ).

Does that help you?

Cary
Click to expand...
domain
as MMC replicates
with automatically.
If know
you do
you need
Click to expand...
http://www.microsoft.com/technet/pr...s/activedirectory/deploy/projplan/adarch.mspx new
DC
Click to expand...
Click to expand...
 
A

Alex Anderson

Cary,

Okay, so if I'm reading this right, I should set up the site links and
all the jazz after I have added this new DC to my existing domain? If so,
then I understand completely, and what to thank you for your help on this.
Much appreciated!

Thank you
Alex Anderson
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

VPN server without domain controller 0
Samba based Domain Controller 7
Rebuild Forest Root Domain Controller 3
Domain Controller Issue - Urgent Help 8
Deleted domain controller 3
howto promote additional domain controller to domain controller 4
Domain Controller Crashed - Other servers don't have 'copies' of A 2
relation betwwen domain and domain controller 2

Top