Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium


Difference between additional DC and child domain

Posted on 2006-06-05
Medium Priority
Last Modified: 2008-01-09
Hi Experts,

I'm learning MS windows 2003 Active directory and I have something unclear And I need your comment to clear it out.

Let's say a companyABC has a headquarter in City A and 2 branch offices in City B and City C.

So I want your recommendation which one of the options below is better:

1. Install Active directory domain in the headquarter and intall additional domain controller in the other two cities. so in overall, there is only one domain in the forest.

2. Install active directory domain in the headquarter and intall a child domain for each of the branch office.


Question by:mrpc_cambodia
  • 2
LVL 48

Expert Comment

ID: 16838648
Hi mrpc_cambodia,

no need for a child domain in this scenario

install an additional domain controller and set up sites in active directory

what kind of connection do you have between sites?
LVL 97

Expert Comment

by:Lee W, MVP
ID: 16838658
Agree - Active Directory doesn't need you to have multiple domains.  setup a single domain and use sites.  You would also create an OU for each site in Active Directory and delegate management of that OU (if desired) to others at the site - essentially giving the other(s) at the site administrative ability over their own site, but NOT over your company wide domain.

Author Comment

ID: 16838789
When there are multiple domain controllers or multiple domains in a forest, then there is replication traffic between those DC or domains, right?

So Among the two options below, which one will produce the least replication traffic?

1. replication between multiple DCs in a single domain in a forest.

2. replication between multiple domains (parent domain/child domain) in a forest.

I know that in Active directory, We can use Site to tell the system about the server physical location so the system will adjust the replication traffic to suit the environment.

but anyway, I think there must be some differences between the two options I mentioned above, and for that to become clear, I need your comment.

LVL 48

Accepted Solution

Jay_Jay70 earned 200 total points
ID: 16838811
well there is replication either way but there wil be more with 2 DC's as you are replicating an entire active directory structure

a child domain would end up having its own ad structure of users a groups which unless you are segmented companies is not really appropriate

child domain of domain.com =


if you have a slow connection then schedule for off peak replication - there isnt a heavy amount of traffic anyway with 2003 servers

Featured Post

Free Tool: Subnet Calculator

The subnet calculator helps you design networks by taking an IP address and network mask and returning information such as network, broadcast address, and host range.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

So you have two Windows Servers and you have a directory/folder/files on one that you'd like to mirror to the other?  You don't really want to deal with DFS or a 3rd party solution like Doubletake. You can use Robocopy from the Windows Server 200…
by Batuhan Cetin Within the dynamic life of an IT administrator, we hold many information in our minds like user names, passwords, IDs, phone numbers, incomes, service tags, bills and the order from our wives to buy milk when coming back to home.…
this video summaries big data hadoop online training demo (http://onlineitguru.com/big-data-hadoop-online-training-placement.html) , and covers basics in big data hadoop .
Is your OST file inaccessible, Need to transfer OST file from one computer to another? Want to convert OST file to PST? If the answer to any of the above question is yes, then look no further. With the help of Stellar OST to PST Converter, you can e…

580 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question