[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 292
  • Last Modified:

How to Add a new domain in an offshore office to an existing Windows 2003 Active Directory?

We have a WIndows 2003 Active Directory with single domain (Domain A) in North America. Domain A has two Windows 2003 Domain Controllers and one of DC has DNS, DHCP, Global Catalog and FSMO on it. The subnet is 172.20.0.0/255.255.0.0. (Network A) We have a firewall with VPN for this network.

We will build a brand new domain (Domain B, Netowork B 192.168.2.0/255.255.255.0) in an offshore in Asia with a new Windows 2003 domain controller. We will install DNS/Wins/DHCP on this new domain controller and let it act role of FSMO and Global Catalog.  A new firewall with VPN will be setup on this network.

We'd like setup site-to-site VPN connection between headoffice (Network A) and offshore office (Nework B). We will also want to allow users in Domain B have access to Domain A and certain folders on file servers among two neworks can be replicated automatically.

How can we add this new Domain B to an existing Windows 2003 Active Directory? How can we realize it?

Thanks?


 
0
vijitc
Asked:
vijitc
  • 2
2 Solutions
 
ocon827679Commented:
Point the network properties DNS settings to the current AD DNS.  Make sure your connectivity is good.  When you run dcpromo, join the existing forest.
0
 
Jay_Jay70Commented:
c
0
 
Jay_Jay70Commented:
What you need, once your vpn is up, is to create a forest trust between the two domains, this will alow access through.
http://technet.microsoft.com/en-us/library/Bb727050.aspx
That is if you are choosing to go a multiple domain environment...

I would also advise using conditional forwarding for DNS so that requests for each domain are sent to the right place
http://www.windowsnetworking.com/articles_tutorials/DNS_Conditional_Forwarding_in_Windows_Server_2003.html

Much better off adding an additional DC though in the remote site and configuring AD sites and services
http://www.microsoft.com/technet/prodtechnol/windowsserver2003/technologies/directory/activedirectory/stepbystep/adsrv.mspx

DNS Server in each site, GC in each site, and away you go, replicating central AD

This as a whole is no small task, but we can help you through the whole thing
0

Featured Post

Microsoft Certification Exam 74-409

VeeamĀ® is happy to provide the Microsoft community with a study guide prepared by MVP and MCT, Orin Thomas. This guide will take you through each of the exam objectives, helping you to prepare for and pass the examination.

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now