?
Solved

One domain and configure 2 DC for "fault tollerance"

Posted on 2006-06-19
5
Medium Priority
?
187 Views
Last Modified: 2010-04-13
I have one domain with 2 DC so configured:
DC1
Global Catalog ON
IP: 10.10.10.11
Subnet Mask: 255.255.255.0
Gateway: 10.10.10.1
DNS1: 10.10.10.11  
DNS2: 10.10.10.12

DC2
Global Catalog ON
IP: 10.10.10.12
Subnet Mask: 255.255.255.0
Gateway: 10.10.10.1
DNS1: 10.10.10.11  
DNS2: 10.10.10.12

1) Now the DNS information are correct?
2) If DC1 go down for a crash....DC2 take his place without problem? (for authentication)
3) Is necessary replicate FSMO.....for authentication and for the normal operation of DC?
4) Is different the situation A) where I shutdown DC1 and DC2 take his place B)There is a crash of DC1, DC2 take is place in the same mode?

Thanks a lot and sorry for all these questions
Ricky
0
Comment
Question by:diberi
  • 2
3 Comments
 
LVL 43

Accepted Solution

by:
Steve Knight earned 500 total points
ID: 16939849
DC2 dns should really be itself first then the other server IMHO.
Other than that as long as one DC is up authentication will work.
You probably don't need to worry about having GC's unless you are using other domains too.

If you are doing a controlled shutdown for a length of time of one DC that has the FMSO roles on it then transfer them to the other box first.

If a server crashes then you can seize the roles to the other with ntdsutil.

Have you considered redundant dhcp for your clients too?  I presume you are running dns on both dc's already with AD integrated zone.

To make redundant dhcp easiest way is to split your scope in two and setup on each server.  Plenty of Q's here on that if needed.

Quick answer as typing on little pda keyboard...

Steve
0
 

Author Comment

by:diberi
ID: 16941224
Using this configuration some weeks ago...i have got troubles.
The DC go down for a crash and Clients of Domain can't get logon.....

Now i will looking for FSMO roles, but for you, is possible that all clients can't get logon for roles?

If DC1 "DHCP Server" go down.....the clients that doesn't get IP from server..can use the last IP assigned form dhcp!! It's wrong?

Thanks and bye bye
0
 
LVL 43

Expert Comment

by:Steve Knight
ID: 16941896
Users should still be able to logon but yes if you run DHCP On one DC then you need to replicate it to the other and make sure users have both DNS servers listed for instance.

FSMO can easily be quickly seized in the event of a server failure and the various roles can be shared amongst the servers in the first place to.

Always a good idea to check your network can run on each server out of the two during your testing phase...
0

Featured Post

Receive 1:1 tech help

Solve your biggest tech problems alongside global tech experts with 1:1 help.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

NTFS file system has been developed by Microsoft that is widely used by Windows NT operating system and its advanced versions. It is the mostly used over FAT file system as it provides superior features like reliability, security, storage, efficienc…
You do not need to be a security expert to make the RIGHT security. You just need some 3D guidance, to help lay out an action plan to secure your business operations. It does not happen overnight. You just need to start now and do the first thin…
The Relationships Diagram is a good way to get an overall view of what a database is keeping track of. It is also where relationships are defined. A relationship specifies how two tables connect to each other. As you build tables in Microsoft Ac…
Is your organization moving toward a cloud and mobile-first environment? In this transition, your IT department will encounter many challenges, such as navigating how to: Deploy new applications and services to a growing team Accommodate employee…
Suggested Courses

599 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question