Solved

Some advice needed on adding a remote 2nd DC To  a SBS domain

Posted on 2008-10-02
2
328 Views
Last Modified: 2010-04-19
Hi there ,here is my current setup,
We have two offices, one running a windows 2003 server and the other a small business server. The two office are connected via a hardware VPN.

The small business server is hosted in a remote office.

Both offices users are connecting to the small business server for e-mail and sharepoint.

The office running windows 2003 DC is running the following service:
TS - one user remoteley connects and is using SAGE and outlook
Internet Authentication Service - Our LOCAL router connects to Active directory and authenticates users via RADIUS.
DNS - The configuration is default and all users connect to handle the internet
Data Backups

All I want is for everyone to be under the same Domain, so my plan is:
Run ADPREP/FOREST Prep on the SBS
Create a RLZ for the subnet of the windows 2003 server
Configure Sites and Services
Demote the current windows 2003 server and join in to the SBS server
Make the Windows 2003 server a Global Catalog , I understand the SBS must remain as a GC
Configure IIS on sbs so I can use the website/connectcomputer when joining a pc/laptop to a domain under the win 2003 network.

Does this sound correct? I know my setup isnt ideal having the sbs in a remote office...but can anyone see anyone problems in what I'm trying to do? I havent does this before and to be honest I am quite cautious of doing it.
0
Comment
Question by:Dan560
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 9

Accepted Solution

by:
waynewilliams earned 500 total points
ID: 22623658
The main issue I see is that you are using the 2003 DC as a Terminal Server.  This is not a recommended configuration.  

I would install a seperate 2003 Member Server to act as the Terminal Server.

You only need to run ADPREP on the SBS if the 2003 server is R2, otherwise you can just dcpromo it.

Make sure you configure your subnet for the local and remote site in AD sites and services before you you dcpromo the 2003 server.  

Finally, I'm not sure that the /connectcomputer wizard will run from a remote site, even if you add the IP range in IIS.
0
 
LVL 2

Author Comment

by:Dan560
ID: 22623736
What type of issues could I have if I carried on using the DC as a terminal server? I know its not safe, but could there be any serious implications?
0

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I work for a company that primarily works with small businesses as their outsourced IT vendor. As such the majority of these customers utilize some version of Small Business Server. Due to the economics of running a small business, many of these cus…
A quick step-by-step overview of installing and configuring Carbonite Server Backup.
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …
This video shows how to use Hyena, from SystemTools Software, to update 100 user accounts from an external text file. View in 1080p for best video quality.

752 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question