Acronis protects the complete Microsoft technology stack: Windows Server, Windows PC, laptop and Surface data; Microsoft business applications; Microsoft Hyper-V; Azure VMs; Microsoft Windows Server 2016; Microsoft Exchange 2016 and SQL Server 2016.
Course Of The Month
10 days, 13 hours left to enrollBecome a Premium Member and unlock a new, free course in leading technologies each month.
Solved
IAS : Migration and requirement
Posted on 2007-12-01
I am upgrading our Active Directory from Windows 2000 to Windows 2003 R2. There is a 2000 DC with IAS-RADIUS server running doing authentication for CISCO WAP devices. I will be demoting that server and I would like move that IAS service to a Windows 2003 server. Questions:
1- Do you know the steps to migrate IAS settings from 2000 to a 2003 server? I already found the steps from 2000 to 2000 bu there is a disclaimer about not working when moving to a 2003 server. Here: http://www.webservertalk.com/archive123-2004-10-357884.html
2- Is it required for IAS to run on a Domain Controller and not just a member server? The reason I ask is due to this KB Article:http://support.microsoft.com/kb/317588
Thanks
1- Do you know the steps to migrate IAS settings from 2000 to a 2003 server? I already found the steps from 2000 to 2000 bu there is a disclaimer about not working when moving to a 2003 server. Here: http://www.webservertalk.com/archive123-2004-10-357884.html
2- Is it required for IAS to run on a Domain Controller and not just a member server? The reason I ask is due to this KB Article:http://support.microsoft.com/kb/317588
Thanks
[X]
Welcome to Experts Exchange
Add your voice to the tech community where 5M+ people just like you are talking about what matters.
- Help others & share knowledge
- Earn cash & points
- Learn & ask questions
2
3 Comments
Active today
1. as per the following MS official document, "the configuration of IAS servers running on products in the Windows 2000 server family can be imported into products in the Windows Server 2003 family with set config. The reverse, however, is not possible."
Netsh commands for AAAA
http://technet2.microsoft.com/WindowsServer/en/Library/9ffd261c-62e4-4f41-aa35-2790bd2534771033.mspx
2. you may run IAS on a member server. actually, installing an IAS on a domain controller is a bit unusual. that's probably why MS published two KB articles regarding "how to configure a Primary/Secondary Internet Authentication Service Server on a Domain Controller."
hope it helps,
bbao
Netsh commands for AAAA
http://technet2.microsoft.com/WindowsServer/en/Library/9ffd261c-62e4-4f41-aa35-2790bd2534771033.mspx
2. you may run IAS on a member server. actually, installing an IAS on a domain controller is a bit unusual. that's probably why MS published two KB articles regarding "how to configure a Primary/Secondary Internet Authentication Service Server on a Domain Controller."
hope it helps,
bbao
Active today
basically, where to put an IAS depends on your security architecture. you have to find a tradeoff between security and performance. for example, installing IAS on DC avoids the traffic between IAS and DC, but it allows IAS clients to "touch" the DC where stores the most sensitive credentials of an organization.
hope it helps,
bbao
hope it helps,
bbao
Featured Post
Question has a verified solution.
If you are experiencing a similar issue, please ask a related question
SHARE your personal details only on a NEED to basis. Take CHARGE and SECURE your IDENTITY.
How do I then PROTECT myself and stay in charge of my own Personal details (and) - MY own WAY...
Users of Windows 10 Professional can disable automatic reboots using the policy editor. This tool is not included in the Windows home edition. But don't worry! Follow the instructions below to install (a Win7) policy editor on your Windows 10 Home e…
Monitoring a network: how to monitor network services and why? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the philosophy behind service monitoring and why a handshake validation is critical in network monitoring. Software utilized …
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…
Suggested Courses
Earn Certification
HTML5 Specialist - Certification
Free withPremium
Course of the Month10 days, 13 hours left to enroll
632 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.