bigeric
asked on
AD server resiliency for two offices
Dear Sir,
I am new to AD. I have two offices (one in UK, one in US) and I am going to setup one AD server in each office. I will only have one corporate domain. If I want to have AD server resiliency, in case either server fails, the remaining server can still provide AD service to users in both offices
(1) What shall I set on the two servers
(2) What shall I set on the client PC of the two offices
(3)Any auto replication that can reduce my work load
thx a lot
Eric
I am new to AD. I have two offices (one in UK, one in US) and I am going to setup one AD server in each office. I will only have one corporate domain. If I want to have AD server resiliency, in case either server fails, the remaining server can still provide AD service to users in both offices
(1) What shall I set on the two servers
(2) What shall I set on the client PC of the two offices
(3)Any auto replication that can reduce my work load
thx a lot
Eric
ASKER
Dear Sir,
Thx for your reply. The connection between the two offices is just Internet, therefore I perfer two servers to provide AD service to local users only in normal case. Only when there is problem on either server, the remaining server will provide service to users in both locations.
Do I need to manually create user account/service/permission
thx
Eric
Thx for your reply. The connection between the two offices is just Internet, therefore I perfer two servers to provide AD service to local users only in normal case. Only when there is problem on either server, the remaining server will provide service to users in both locations.
Do I need to manually create user account/service/permission
thx
Eric
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
You should also reference https://www.experts-exchange.com/questions/22474493/MS-Exchange-AD-Server-Information-Synchronization-between-two-offices-in-different-locations.html for information that we've already provided to you on this topic.
You need to configure two separate AD sites, one for each office, and configure the subnets that correspond to each office. Because AD is "site-aware" you need to do this so that your US clients will authenticate to the US DC and the UK will authenticate to the UK, otherwise you'll be getting calls complaining of slow logon times as clients try to authenticate across the WAN. (What kind of connectivity do you have between the two offices?) Check out the following support webcast on configuring Sites & Subnets in AD 2003: http://support.microsoft.com/kb/909429
As far as client configuration is concerned, configure the US office to point to the US DC as its primary DNS with UK as their secondary, and vice versa.
Hope this helps.
Laura E. Hunter - Microsoft MVP: Windows Server - Networking