bobbydall2000
asked on
AD Multiple locations SBS 2008
Hello all.
I have a main site using Windows 2008 SBS server. Using Exchange to manage email for the whole comapny and the SBS box is also AD, DHCP and file server. the domain is setup as "company.local' and there is a mix of XP and Windows 7 machines. All works ok.
The company has 2 other locations. They want to start centralizing control from the main office. The first location already has a Windows 2003 SBS server running Exchange, DHCP and AD for that local domain called "remote.local".
Questions, can I use that location 2 SBS 2003 server and hook it's AD into the main office AD so the main office controls everything with central user management? as an example if a user from the main office goes to the remote location and logs into a computer there he will get his login scripts and mapped drives, etc.
The two remote locations will have a VPN active back to the main office through a Ciso routers. Do I need to let certain traffic throught the VPN's for AD?
I have a main site using Windows 2008 SBS server. Using Exchange to manage email for the whole comapny and the SBS box is also AD, DHCP and file server. the domain is setup as "company.local' and there is a mix of XP and Windows 7 machines. All works ok.
The company has 2 other locations. They want to start centralizing control from the main office. The first location already has a Windows 2003 SBS server running Exchange, DHCP and AD for that local domain called "remote.local".
Questions, can I use that location 2 SBS 2003 server and hook it's AD into the main office AD so the main office controls everything with central user management? as an example if a user from the main office goes to the remote location and logs into a computer there he will get his login scripts and mapped drives, etc.
The two remote locations will have a VPN active back to the main office through a Ciso routers. Do I need to let certain traffic throught the VPN's for AD?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
No...you shouldn't have to...VPN should allow all traffic to pass
ASKER
ASKER
Never mind that link, SBS 2003 would need to be the root controller.
You are correct, There can be only one SBS server in the domain.
You could buy a new server 2008 license and install on the old server after data and email is migrated
You could buy a new server 2008 license and install on the old server after data and email is migrated
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
And I'm just going to point out your could run both sites on SBS. One site using SBS 2008 and the other site using SBS 2003. It's not the ideal solution as you have to manage them as separate domains, mail servers, and such. You'd probably want to use subdomains for each sites e-mail (i.e. user@site1.company.com and user@site2.company.com. It would make handling roaming users difficult and again it's not the best possible solution. Guess I'm mainly stating this as times are difficult and this option may be possible if the funding is unavailable for the "better" options.
doesn't exactly accomplish the goal posted by the author in the original post..."They want to start centralizing control from the main office"
This question has been classified as abandoned and is closed as part of the Cleanup Program. See the recommendation for more details.
ASKER
The Cisco routers have created a hardware VPN between locations. Do I need to allow specific traffic through the VPN for AD?