Should i Build another DC or Transfer Roles for Disaster Recovery ?
Hi,
i have the following roles on my 2 main DC's in London office , My other DC in separate London office is just a GC and the other DC in NY is a GC and exchange sever.
Schema owner swsrv002.LDN.SW.COM
Domain role owner SWSRV001.LDN.SW.COM
PDC role swsrv002.LDN.SW.COM
RID pool manager swsrv002.LDN.SW.COM
Infrastructure owner swsrv002.LDN.SW.COM
SWSRV001 - Is the file&print, DNS, DHCP Server
SWSRV002 - Is a exchange server
Going foward in terms of disaster recovery (as at present i am unable to use veritas to restore SWSRV001 in a test DR enviroment sucessfully) ,
Should i build another DC which is a Global catalogue and transfer all Roles to it ?
Thanks in advance
i have the following roles on my 2 main DC's in London office , My other DC in separate London office is just a GC and the other DC in NY is a GC and exchange sever.
Schema owner swsrv002.LDN.SW.COM
Domain role owner SWSRV001.LDN.SW.COM
PDC role swsrv002.LDN.SW.COM
RID pool manager swsrv002.LDN.SW.COM
Infrastructure owner swsrv002.LDN.SW.COM
SWSRV001 - Is the file&print, DNS, DHCP Server
SWSRV002 - Is a exchange server
Going foward in terms of disaster recovery (as at present i am unable to use veritas to restore SWSRV001 in a test DR enviroment sucessfully) ,
Should i build another DC which is a Global catalogue and transfer all Roles to it ?
Thanks in advance
I agree. Failure of Domain Naming Master has not effect on network untill and unless you try to add or remove domains in your network. You can easily seize roles whenever you want. Domain Naming Master role as indicated in the question has assigned to SWSRV001 and also a GC. So the only thing i want to say that if GC is missing in client's site then clients can't logon to network because GC is required for domain authentication.
Thanks
SystmProg
Thanks
SystmProg
ASKER
Hi James,
i was told that the exchange server should not be a GC and ideally not be a DC either ?.
My Plan is going to be
1) Build another DC make it a GC then transfer all Roles from SWSRV001 and SWSRV002 to it ( is that a wise move all Roles on one DC ?)
2) Demote SWSRV001 from DC to normal Server as its mainly just a file&print box
3) Demote SSWRV002 from DC to normal Server ( As exchnage only needs AD connector to work)
Does this sound like the best way forward ?
i was told that the exchange server should not be a GC and ideally not be a DC either ?.
My Plan is going to be
1) Build another DC make it a GC then transfer all Roles from SWSRV001 and SWSRV002 to it ( is that a wise move all Roles on one DC ?)
2) Demote SWSRV001 from DC to normal Server as its mainly just a file&print box
3) Demote SSWRV002 from DC to normal Server ( As exchnage only needs AD connector to work)
Does this sound like the best way forward ?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
It is never a good idea to run other apps on a Domain Controller, unless have to. Given your situation, it is not a bad idea to build another DC/GC and transfer the roles to it. If you lose the new DC you can always transfer/sieze the roles back again.
All DCs should be GCs in your setup - especially the exchange box.
Cheers
JamesDS