I have a main site using Windows 2008 SBS server. Using Exchange to manage email for the whole comapny and the SBS box is also AD, DHCP and file server. the domain is setup as "company.local' and there is a mix of XP and Windows 7 machines. All works ok.
The company has 2 other locations. They want to start centralizing control from the main office. The first location already has a Windows 2003 SBS server running Exchange, DHCP and AD for that local domain called "remote.local".
Questions, can I use that location 2 SBS 2003 server and hook it's AD into the main office AD so the main office controls everything with central user management? as an example if a user from the main office goes to the remote location and logs into a computer there he will get his login scripts and mapped drives, etc.
The two remote locations will have a VPN active back to the main office through a Ciso routers. Do I need to let certain traffic throught the VPN's for AD?