We help IT Professionals succeed at work.

Join Domain Controller On A Remote Site To Company Domain

1,223 Views
Last Modified: 2013-06-17
Hi there,
I have a remote site that is currently on a seperate domain, i want to take it off that individual domain and join it to our main company domain.
We have a vpn connection between the main office and this remote site. via a leased line.
What is the best method to join the domain controller at the remote site to our main domain.
The sysvol on our main domain controller is around 300 mb
Comment
Watch Question

Commented:
You could just connect the VPN and promote the new DC in the middle of the night when traffic is low.

Another method would be to back up the System State on an existing DC, burn it to a CD, take it to the remote site, and promote the new DC using DCPROMO /adv.  See these instructions:
http://support.microsoft.com/kb/311078

Note that it is very important to restore the System State to an alternate location on the new DC; don't restore it over the top of the existing System State or you could render the server unbootable due to differences in hardware.

Author

Commented:
Hi,
If i have a fast VPN link is it better to just demote existing dc at remote site (as it is on a differnet domain)
and run dcpromo rather than restoring system state.
I take it i need to have dns installed and sites setup etc first.
What is the correct order

Thanks
Commented:
This one is on us!
(Get your first solution completely free - no credit card required)
UNLOCK SOLUTION

Commented:
It's also probably a good idea to make the new DC a Global Catalog server.
http://support.microsoft.com/kb/313994

Commented:
When you ping the remote network from the network where the 2 DCs are, what is the latency in milliseconds...?

Author

Commented:
it is around 12 ms
Commented:
This one is on us!
(Get your first solution completely free - no credit card required)
UNLOCK SOLUTION

Author

Commented:
Hi Billber,
Is this about my question as i am confused now
i have a single forest

Author

Commented:
Also is it possible that if i promote the dc over the wan and anything goes wrong it could damage the main sysvol at the main site
thanks

Commented:
Hi,

Yes - I also have a single forest domain and HAVE to use the reg hacks at all sites that connect remotely.

If I don't, all sorts of strange issues pop up.

The issue that I trained my staff to watch for is "It takes FOREVER to log into the server".  Once they hear that, they immediately check for the reg hacks.

You won't believe the difference once you apply them and reboot.

NOTE: To verify that it's working, after applying the hacks and rebooting, type GPUPDATE /FORCE at a command prompt and then check your EVENTLOG for an SCECLI Info saying that everything applied OK.

Author

Commented:
Thanks A Lot
U guys were a gr8 help
Unlock the solution to this question.
Join our community and discover your potential

Experts Exchange is the only place where you can interact directly with leading experts in the technology field. Become a member today and access the collective knowledge of thousands of technology experts.

*This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

OR

Please enter a first name

Please enter a last name

8+ characters (letters, numbers, and a symbol)

By clicking, you agree to the Terms of Use and Privacy Policy.