dc additional

[Misaro]

i have a domain working with 2 Domain Controllers ok
now i need to install a third DC but in remote location.

According realibility is better :

To create a child domain; or set the third DC in the
remote location in the original domain and after
implemented sites

I must to change the ip addressing to config the third DC
(another country connect through high spped link) or i can
keep the same that i'm using in the domain

Thanks any comments !!

 

[ptwilliams]

Generally you'll simply create a new DC in the existing domain and add that
to a different site. However, if the DC is to be in another country, and
therefore administered by another IT team, some people like to create a
child domain and thus effectively delegate the control to the other team.

If the DC resides in a different site, unless you have some good comms and
routing skills (no offence, but I don't think you have the necessary skills
yet, else you wouldn't be asking this) then you will have to use a different
subnet. You will also need an effective way of routing the traffic between
the two. AD and NAT are a no-no, so you'll need a VPN if you don't have a
dedicated leased line... This is regardless of which option you take as
both require replication.

Post back additional questions for us to help you with. And please
elaborate what you wish to achieve...

--

Paul Williams
_________________________________________
http://www.msresource.net


Join us in our new forums!
http://forums.msresource.net
_________________________________________


i have a domain working with 2 Domain Controllers ok
now i need to install a third DC but in remote location.

According realibility is better :

To create a child domain; or set the third DC in the
remote location in the original domain and after
implemented sites

I must to change the ip addressing to config the third DC
(another country connect through high spped link) or i can
keep the same that i'm using in the domain

Thanks any comments !!

 

[Tomasz Onyszko]

i have a domain working with 2 Domain Controllers ok
now i need to install a third DC but in remote location.

According realibility is better :

To create a child domain; or set the third DC in the
remote location in the original domain and after
implemented sites

The realibility is not a reason to create another domain - domains
should be created if You have specific needs in different regions (for
example password policy) or If you want to limit data replication
traffic between the sites (domains are not exchanging full catalog data
between them)

If You will look at the realibility You should think about two DC's (at
least - I don't know how big this location is) in this remote location.

You provide us with very little infromation about Your design - how many
users You have to handle in remote location, Your company organization,
is it remote location subsidiary office of your company or merged
compny, time zones diference etc.

Depending on Your needs both scenarios:
- additional DCs in existing domain
- child domain
can be good.

I must to change the ip addressing to config the third DC
(another country connect through high spped link) or i can
keep the same that i'm using in the domain

If You choose to set up third DC You cen set it up in Your original
network, then disconnect from network, move DC object to the other site
(in AD),and then after connectiong back to network change IP addresses
to fit into the IP addressing schema in this location

Remeber that You should have at least one GC in the remote location.

 

[Misaro]

We have high speed leased line connection to the other
country
we ourselves will administrate the Domain Controller
The function of it is provide authentication and network
basic services to some web servers and backup servers that
will be backup's of the main operation in our country. We
are not going to authenticate many users there.
Certainly i don't have enough experience with inter-site
replication (WAN Replication)
According your comments i must to set it up the DC in
different ip range in the remote site ! Create a site in
my local domain and add it there. I would like to ask you
if you have any inter-site example that can help me to
understand better this config, 'Cos i need as soon as
possible begin the installation .

 

[Cary Shultz [A.D. MVP]]

Misaro,

You might just want to consider setting up a second Site for the remote
location. You would do this in Active Directory Sites and Services. You
would also need / want to set up a Site-to-Site VPN between the two
locations ( as Paul so aptly suggested ). I hope that your Firewalls can do
this....

I would also strongly suggest that you have at least two DCs at the remote
Site. However, as Tomasz stated, you have not included any information
about that location. If there are only seven users then it might be
difficult to persuade the Suites for the extra money....Whatever the case
might be, I would urge you to make that DC a Global Catalog Server as well.
Let's not forget DNS....

Not so sure that there is a need for a child domain. But, then again, you
have not really given too much info. Based on what has been written so far
I would say no need for the child domain.....

Cary

 

[ptwilliams]

The AD side of this isn't that tough! You create a site and a subnet in
Sites and Services and associate the subnet with the site. You then build
your DC, move it to the correct site and your away <g>.

The following document describes creating a site:
-- http://support.microsoft.com/?id=318480


This document discusses moving a DC to another site:
-- http://www.msresource.net/kb/DCsiteMove.html


I'm afraid, the comms side will take a little more work...

Have a read of those, create the site, and then post back your questions ;-)


--

Paul Williams
_________________________________________
http://www.msresource.net


Join us in our new forums!
http://forums.msresource.net
_________________________________________


We have high speed leased line connection to the other
country
we ourselves will administrate the Domain Controller
The function of it is provide authentication and network
basic services to some web servers and backup servers that
will be backup's of the main operation in our country. We
are not going to authenticate many users there.
Certainly i don't have enough experience with inter-site
replication (WAN Replication)
According your comments i must to set it up the DC in
different ip range in the remote site ! Create a site in
my local domain and add it there. I would like to ask you
if you have any inter-site example that can help me to
understand better this config, 'Cos i need as soon as
possible begin the installation .