Solved

Group Policy Item-Level Targeting

Posted on 2010-11-11
5
741 Views
Last Modified: 2012-05-10
Thanks for your help- I am trying to create group policy autp mapping drives for our sites, dcs, workstations.. the objective is to have workstations recognize authentiation with another dc in another site if local resource dc does go down.. group policy then needs to add the correct drives from the site level in my opinion.. for example
if houston dc site goes down (user has mapped network drives to server)
have them authenticate for a high bandwith different site dc an then have group policy change mapped drives to that new dc mapped dirves instead of the local.

Let  me know if i can help anymore.
0
Comment
Question by:Jmarcomb
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
5 Comments
 
LVL 24

Expert Comment

by:Awinish
ID: 34109944
The DC authentication happens to give the access to the resource which occurs through SRV records in dns.

Authentication doesn't work like you are expecting,once user is authenticated user can access resource in the domain & if the only dc in the site is down, it will reestablish the same session, so there will be no way what user was accessing preiously will be lost & new drives or something will be mapped.

Drive mapping GPO can be applied at user, computer,site level or domain level,if there is no dc available user can still work bt they will not be able to access resource or update the changes.

I don't think it is possible to achieve what you are expecting.




0
 

Author Comment

by:Jmarcomb
ID: 34112552
Well. if for example the local dc went down- workstation authenticates with off-site dc controller (like it does) and if manually added the offsite mapped drives it would work. Why then can I not have a group policy or logon script recognize hey I am not connected with houston on xxxxx subnet i am connected with new york on xxxxx subnet - use off-site mapped drives instead of local. I have even considered tricking dns to map a general name like "drives" to the server ip address. for example if i have a dns order 1,2,3.. if local resources went down (1) it would hit first off-site to authenticate (2) and in the group policy programming or script programming it would try to find drives.domain.local- and it would auto map those drives. Let me know what anyone thinks.. i really want this disaster recovery

(All sites have WAFS, WAN replicated data and same folder names. Any changes on one site are replicated to the other in a matter of moments)
0
 
LVL 27

Expert Comment

by:davorin
ID: 34113314
0
 

Author Comment

by:Jmarcomb
ID: 34114541
"DFS provides location transparency and redundancy to improve data availability in the face of failure or heavy load by allowing shares in multiple different locations to be logically grouped under one folder"

IT sounds- in theory what I am looking for.. though I do not need actual file replication- I need more details on this feature. I need the logical file share they are talking about.
0
 
LVL 27

Accepted Solution

by:
davorin earned 500 total points
ID: 34116712
0

Featured Post

Windows Server 2016: All you need to know

Learn about Hyper-V features that increase functionality and usability of Microsoft Windows Server 2016. Also, throughout this eBook, you’ll find some basic PowerShell examples that will help you leverage the scripts in your environments!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

When speed and performance are vital to revenue, companies must have complete confidence in their cloud environment.
Auditing domain password hashes is a commonly overlooked but critical requirement to ensuring secure passwords practices are followed. Methods exist to extract hashes directly for a live domain however this article describes a process to extract u…
This tutorial will walk an individual through the steps necessary to enable the VMware\Hyper-V licensed feature of Backup Exec 2012. In addition, how to add a VMware server and configure a backup job. The first step is to acquire the necessary licen…
This tutorial will walk an individual through setting the global and backup job media overwrite and protection periods in Backup Exec 2012. Log onto the Backup Exec Central Administration Server. Examine the services. If all or most of them are stop…

751 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question