Some advice needed on adding a remote 2nd DC To  a SBS domain

Posted on 2008-10-02
Medium Priority
Last Modified: 2010-04-19
Hi there ,here is my current setup,
We have two offices, one running a windows 2003 server and the other a small business server. The two office are connected via a hardware VPN.

The small business server is hosted in a remote office.

Both offices users are connecting to the small business server for e-mail and sharepoint.

The office running windows 2003 DC is running the following service:
TS - one user remoteley connects and is using SAGE and outlook
Internet Authentication Service - Our LOCAL router connects to Active directory and authenticates users via RADIUS.
DNS - The configuration is default and all users connect to handle the internet
Data Backups

All I want is for everyone to be under the same Domain, so my plan is:
Create a RLZ for the subnet of the windows 2003 server
Configure Sites and Services
Demote the current windows 2003 server and join in to the SBS server
Make the Windows 2003 server a Global Catalog , I understand the SBS must remain as a GC
Configure IIS on sbs so I can use the website/connectcomputer when joining a pc/laptop to a domain under the win 2003 network.

Does this sound correct? I know my setup isnt ideal having the sbs in a remote office...but can anyone see anyone problems in what I'm trying to do? I havent does this before and to be honest I am quite cautious of doing it.
Question by:Dan560

Accepted Solution

waynewilliams earned 2000 total points
ID: 22623658
The main issue I see is that you are using the 2003 DC as a Terminal Server.  This is not a recommended configuration.  

I would install a seperate 2003 Member Server to act as the Terminal Server.

You only need to run ADPREP on the SBS if the 2003 server is R2, otherwise you can just dcpromo it.

Make sure you configure your subnet for the local and remote site in AD sites and services before you you dcpromo the 2003 server.  

Finally, I'm not sure that the /connectcomputer wizard will run from a remote site, even if you add the IP range in IIS.

Author Comment

ID: 22623736
What type of issues could I have if I carried on using the DC as a terminal server? I know its not safe, but could there be any serious implications?

Featured Post

Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

I've often see, or have been asked, the question about the difference between the Exchange 2010 SP1 version, available as part of Small Business Server (SBS) 2011, and the “normal” Exchange 2010 SP1 Standard. The answer to the question is relativ…
You may have discovered the 'Compatibility View Settings' workaround for making your SBS 2008 Remote Web Workplace 'connect to a computer' section stops 'working around' after a Windows 10 client upgrade.  That can be fixed so it 'works around' agai…
The video provides a quick and easy steps to migrate MBOX file to well known Outlook PST and Office 365. Besides this, it also supports and migrates more than 20 email clients of MBOX which include AppleMail, Opera, Thunderbird and SeaMonkey effortl…
Watch the video of Kernel Migrator for SharePoint, which demonstrate the process easily of migration from SharePoint to SharePoint, OneDrive for Business & Google Drive servers, Public Folder to SharePoint, File Server to SharePoint. The tool has va…

627 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question