Should i Build another DC or Transfer Roles for Disaster Recovery ?

Posted on 2005-04-11
Medium Priority
Last Modified: 2010-08-05

i have the following roles on my 2 main DC's in London office , My other DC in separate London office is just a GC and the other DC in NY is a GC and exchange sever.

Schema owner                swsrv002.LDN.SW.COM
Domain role owner           SWSRV001.LDN.SW.COM
PDC role                    swsrv002.LDN.SW.COM
RID pool manager            swsrv002.LDN.SW.COM
Infrastructure owner        swsrv002.LDN.SW.COM

SWSRV001 - Is the file&print, DNS, DHCP Server
SWSRV002 - Is a exchange server

Going foward in terms of disaster recovery (as at present i am unable to use veritas to restore SWSRV001 in a test DR enviroment sucessfully) ,

Should i build another DC which is a Global catalogue and transfer all Roles to it  ?

Thanks in advance

Question by:Namster_1974
  • 2
LVL 16

Expert Comment

ID: 13751440
It is never a good idea to run other apps on a Domain Controller, unless have to. Given your situation, it is not a bad idea to build another DC/GC and transfer the roles to it. If you lose the new DC you can always transfer/sieze the roles back again.

All DCs should be GCs in your setup - especially the exchange box.


LVL 35

Expert Comment

by:Nirmal Sharma
ID: 13751482
I agree. Failure of Domain Naming Master has not effect on network untill and unless you try to add or remove domains in your network. You can easily seize roles whenever you want. Domain Naming Master role as indicated in the question has assigned to SWSRV001 and also a GC. So the only thing i want to say that if GC is missing in client's site then clients can't logon to network because GC is required for domain authentication.


Author Comment

ID: 13751496
Hi James,

i was told that the exchange server should not be a GC and ideally not be a DC either ?.

My Plan is going to be

1) Build another DC make it a GC then transfer all Roles from SWSRV001 and SWSRV002 to it ( is that a wise move all Roles on one DC ?)
2) Demote SWSRV001 from DC to normal Server as its mainly just a file&print box
3) Demote SSWRV002 from DC to normal Server ( As exchnage only needs AD connector to work)

Does this sound like the best way forward ?

LVL 16

Accepted Solution

JamesDS earned 1500 total points
ID: 13751518
IF the exchange box is still going to be a DC then it should be a GC too. Exchange does lots of lookups on GC and it seems a waste to have to go across the LAN when the information can be local.

You should always have at least 2 Domain Controllers in every domain, so unless you can afford another server, I would leave the DC on the exchange server and demote only the File and Print.



Featured Post

[Webinar] Cloud and Mobile-First Strategy

Maybe you’ve fully adopted the cloud since the beginning. Or maybe you started with on-prem resources but are pursuing a “cloud and mobile first” strategy. Getting to that end state has its challenges. Discover how to build out a 100% cloud and mobile IT strategy in this webinar.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

NTFS file system has been developed by Microsoft that is widely used by Windows NT operating system and its advanced versions. It is the mostly used over FAT file system as it provides superior features like reliability, security, storage, efficienc…
I came across an unsolved Outlook issue and here is my solution.
This video shows how to quickly and easily deploy an email signature for all users in Office 365 and prevent it from being added to replies and forwards. (the resulting signature is applied on the server level in Exchange Online) The email signat…
We’ve all felt that sense of false security before—locking down external access to a database or component and feeling like we’ve done all we need to do to secure company data. But that feeling is fleeting. Attacks these days can happen in many w…
Suggested Courses

864 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question