Go Premium for a chance to win a PS4. Enter to Win

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 205
  • Last Modified:

Query on changing password in AD

Hi Guys

I have something that is stumping me...

If I change my password within AD (we are running at 2003 functional level)...is this change made on the DC I am connect to (as can be seen using the SET command on the local PC), or the PDC Emulator?

I am just trying to get my head around what the PDC Emulator actually does? I thought all DC's in a domain were equal to others?

Cheers!
0
kam_uk
Asked:
kam_uk
1 Solution
 
bluntTonyCommented:
The password change will be made on the domain controller you are connected to. The change is then replicated around the domain as a
However, the PDC emulator gets preferential replication for password changes - it will be informed as soon as possible, regardless of it's location. Even if it's the other side of a site link, the change will replicate ASAP. The reason for this is -
When you log in, if the authenticating DC refuses your password, the request is then automatically referred to the PDC emulator (just in case your password has been recently changed). Only when the PDC emulator also refuses the password will your login attempt fail.
This link explains the three type of replication including password changes: http://blogs.technet.com/kenstcyr/archive/2008/07/05/understanding-urgent-replication.aspx
Hope this explains...
0

Featured Post

Veeam Disaster Recovery in Microsoft Azure

Veeam PN for Microsoft Azure is a FREE solution designed to simplify and automate the setup of a DR site in Microsoft Azure using lightweight software-defined networking. It reduces the complexity of VPN deployments and is designed for businesses of ALL sizes.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now