Solved

Windows 2003 Server - Domain Controller and Terminal Server - Loopback Processing - Bad Idea?

Posted on 2008-10-31
3
1,062 Views
Last Modified: 2012-08-13
I have a Windows 2003 server with Terminal Services installed.  It is also a Domain controller.
There is another DC (part of this domain) in another location (users do not access).  This second server is really just for AD backup.  

First question - off the bat - is it a bad idea to have a DC that is also a TS - and why?
Will I experience any issues because it is a TS and a DC?

Second - I am thinking of applying Loopback processing to the Server.  
Because the server is part of the Domain Controllers OU - and therefore part of the Default Domain Controllers Policy - do I turn on GP Loopback Processing - in the Defaualt Domain Controllers Policy?
Or do I create a second policy and apply it to the Domain Controllers OU?
Or do I move the server out of the Domain Controllers OU to a new OU and then apply the policy that has the Loopback Processing enabled?  (I'm thinking no on this last one - as I do not want to lose any of the Default Domain Controllers Policy settings).
0
Comment
Question by:kstet
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 24

Accepted Solution

by:
andrew_aj1 earned 500 total points
ID: 22852282
It is not a good idea to install terminal services on a domain controller, but i have seen it done before. The following link provides a bit more information why:
http://technet.microsoft.com/en-us/library/cc758409.aspx
I have never done loopback processing of group policy, but this information should help:
http://support.microsoft.com/kb/231287
i hope this helps. Good luck.
0
 
LVL 24

Expert Comment

by:andrew_aj1
ID: 23286474
kstet, can we get an update please.
0

Featured Post

Free Tool: Subnet Calculator

The subnet calculator helps you design networks by taking an IP address and network mask and returning information such as network, broadcast address, and host range.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article explains the steps required to use the default Photos screensaver to display branding/corporate images
Always backup Domain, SYSVOL etc.using processes according to Microsoft Best Practices. This is meant as a disaster recovery process for small environments that did not implement backup processes and did not run a secondary domain controller that ne…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…
This video shows how to use Hyena, from SystemTools Software, to bulk import 100 user accounts from an external text file. View in 1080p for best video quality.

763 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question