Solved

How to create AD Site(s) in existing forest

Posted on 2011-09-22
3
156 Views
Last Modified: 2012-05-12
Abstract: I need to create site(s) in my existing Active Directory to assist with the implementation of DFS.

Environment: Windows 2003 Forest, single domain, two physical sites connected with a 6Mbps link; only one logical site in active directory.  At least one DC exists at each physical site.  No subnets are defined in the Default-First-Site.  All DCs are GCs and the other FSMO roles are held by a DC (DCa) at the main site (Site A).

Problem: I created a new Site in AD to represent my second physical site (Site B).  I then created the proper subnet and site link.  I then moved the DC already present at the physical site (DCb) into Site B.  After a few minutes several of my member servers at Site A became "unavailable".  That is they simply lost network connectivity -- I could not ping to them but I could initiate pings from them.  After moving DCb back to Site A and deleting Site B (and its subnet and removing it from the site link) things started to return to normal.

Question: I have two questions, the first is less important.  1. What could have caused this; and 2. What do I need to do differently when I try this again?

I realize this is somewhat complex and will be around to clarify anything.  Thanks in advance!
0
Comment
Question by:ryanmcnaughton11
  • 2
3 Comments
 
LVL 9

Accepted Solution

by:
Lester_Clayton earned 500 total points
ID: 36583651
1) SRV records inside your DNS will contain site information.  By moving the server manually, you broke the process because the DNS records weren't updated to reflect the site change.

2) Don't move the servers into their respective sites. KCC (Knowledge Consistency Checker) will do this for you - it's an automated process.  It will also update the SRV records accordingly.
0
 

Author Comment

by:ryanmcnaughton11
ID: 36586559
Lester,

It did seem like a DNS problem.  Thank you so much for your comment.  I'm not sure of the etiquette here but I'm marking this as the solution (I won't have a chance to try this solution until after hours next week).

Thanks for your help.

Adam for Ryan
0
 

Author Comment

by:ryanmcnaughton11
ID: 37139318
Lester,

Thanks again for pointing me in the right direction; the actual problem was the DC was missing the _msdcs zone (it was never created after an upgrade from Win2000).

AC
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

ADCs have gained traction within the last decade, largely due to increased demand for legacy load balancing appliances to handle more advanced application delivery requirements and improve application performance.
Is your Office 365 signature not working the way you want it to? Are signature updates taking up too much of your time? Let's run through the most common problems that an IT administrator can encounter when dealing with Office 365 email signatures.
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …

910 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

19 Experts available now in Live!

Get 1:1 Help Now