Solved

Active Directory failover not working as intended

Posted on 2006-10-25
3
244 Views
Last Modified: 2006-11-18
Hello,

We have a relatively small domain - 7 servers total with about 200 users...  All of our servers are running MS Windows Server 2003...  for lack of a better term our PDC (which I know doesn't exist anymore) is called MSDSB04.  It handles DNS as well as Active Directory and DHCP on the local LAN segment.

I have added two other Active Directory servers over the last year or so - the intent being that if something happened to MSDSB04 they would handle DNS and authentication requests seamlessly without any interruption of service to the LAN users... this has not worked...  When MSDSB04 goes offline - it kills the LAN.

What do I need to do to get these other servers to pick up the slack on demand?
0
Comment
Question by:iain_stephen
  • 2
3 Comments
 
LVL 70

Accepted Solution

by:
Chris Dent earned 250 total points
ID: 17803466

Hey,

You need a few things.

You mentioned it, but didn't say whether or not the other servers were running the DNS Service? And if so, are they mentioned in your clients TCP/IP config?

One of the other most important things is that you set your servers to be Global Catalog, this is done through AD Sites and Services, then under your Site, Servers, your Server and the properties for NTDS Settings you should see a little tick box. There are no problems with you making all your Domain Controllers Global Catalog.

Chris
0
 

Author Comment

by:iain_stephen
ID: 17804013
Just a note - thank you for keeping it simple and not referring me to endless Microsoft KB articles... the key was the global catalog - it was only checked for the 'PDC' - not the other two servers...

I have done that now and will try it out tonight...

One other question - if you have the time - The original 'PDC' is also running DHCP for the local LAN segment...  should I be setting up any kind of failover for that?  Perhaps it would be best to move the DHCP function to the main router (default gateway)?
0
 
LVL 70

Expert Comment

by:Chris Dent
ID: 17812547

Possibly the best way to deal with DHCP is to split the scope up into two, then have one DHCP Server hand out the first half and another the second.

Works pretty well really.

Chris
0

Featured Post

Ransomware-A Revenue Bonanza for Service Providers

Ransomware – malware that gets on your customers’ computers, encrypts their data, and extorts a hefty ransom for the decryption keys – is a surging new threat.  The purpose of this eBook is to educate the reader about ransomware attacks.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

So you have two Windows Servers and you have a directory/folder/files on one that you'd like to mirror to the other?  You don't really want to deal with DFS or a 3rd party solution like Doubletake. You can use Robocopy from the Windows Server 200…
Restoring deleted objects in Active Directory has been a standard feature in Active Directory for many years, yet some admins may not know what is available.
When you create an app prototype with Adobe XD, you can insert system screens -- sharing or Control Center, for example -- with just a few clicks. This video shows you how. You can take the full course on Experts Exchange at http://bit.ly/XDcourse.
Need to grow your business through quality cloud solutions? With everything required to build a cloud platform and solution, you may feel like the distance between you and the cloud is quite long. Help is here. Spend some time learning about the Con…

948 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

21 Experts available now in Live!

Get 1:1 Help Now