Solved

Global Catalog Server Question

Posted on 2007-03-24
2
247 Views
Last Modified: 2010-04-20
With the global catalog server. In a Single Domain environment with one dc , when people are logging into the network , their account must contact the gc in order to logon?unless it's already cached, correct?

also In a one domain environment, if i have the the first dc with the gc and  im adding asecondary dc . if i did not want to enable gc on the new server when people are authenticating towards that server it should forward the gc requests to the main server?

i've been try to read around and i was just hoping for some clarity. hopefully i have made sense.

H
0
Comment
Question by:Helder_Hipolito
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
2 Comments
 
LVL 70

Expert Comment

by:KCTS
ID: 18786539
When a user logs onto a domain a global catalog server must normally be contacted to determin universal group membership. (This can be disabled on Win2003 servers but IS NOT recommended). If the DC has no Global catlog of its own it must forward the request to the global catalog.

It is good practice to have at least one DC with Global catalog on one site, Enabling Global Calalog on two DCs provides some fault tollerance and should seriously be considered.. If the DC with global catalog fails, then the other DC will not be able to authenticat logins without the Global Catalog.

I suggest you enable Global Catalog on both machines, its just a check bo, and there is very little overhead,
0
 
LVL 70

Accepted Solution

by:
KCTS earned 50 total points
ID: 18786702
Sorry, Its getting late, I made a few typo's in that last comment so here it is again without the errors I hope:-

When a user logs onto a domain, a global catalog server must normally be contacted to determine universal group membership. (This can be disabled on Win2003 servers but IS NOT recommended, see http://support.microsoft.com/kb/241789). If the DC has no Global catlog of its own it must forward the request to the global catalog.

It is good practice to have at least one DC with Global catalog on each site to prevent intersite logon traffic, Enabling Global Calalog on two DCs provides some fault tollerance and should seriously be considered.. If the DC with global catalog fails, then the other DC will not be able to authenticat logins without the Global Catalog.

I suggest you enable Global Catalog on both machines, its just a checkbox, and there is very little overhead involved see http://support.microsoft.com/kb/313994
0

Featured Post

Office 365 Training for IT Pros

Learn how to provision tenants, synchronize on-premise Active Directory, implement Single Sign-On, customize Office deployment, and protect your organization with eDiscovery and DLP policies.  Only from Platform Scholar.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This is my 3rd article on SCCM in recent weeks, the 1st (http://www.experts-exchange.com/OS/Microsoft_Operating_Systems/Server/Windows_Server_2008/A_4466-A-beginners-guide-to-installing-SCCM2007-on-Windows-2008-R2-Server.html) dealing with installat…
Some time ago I faced the need to use a uniform folder structure that spanned across numerous sites of an enterprise to be used as a common repository for the Software packages of the Configuration Manager 2007 infrastructure. Because the procedu…
There are cases when e.g. an IT administrator wants to have full access and view into selected mailboxes on Exchange server, directly from his own email account in Outlook or Outlook Web Access. This proves useful when for example administrator want…
NetCrunch network monitor is a highly extensive platform for network monitoring and alert generation. In this video you'll see a live demo of NetCrunch with most notable features explained in a walk-through manner. You'll also get to know the philos…

717 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question