Solved

New brach office AD setup

Posted on 2011-09-27
6
354 Views
Last Modified: 2012-06-27
Hi,
We have a new branch office with a 10MB WAN link b/w our main office and this new branch office.  I have placed one Windows 2003 DC in the branch office.  I plan on making this server a GC, DNS, DHCP, etc.  This branch office is also on a different subnet than our main office.  What configurations would be best in Site and Services?  Currently, I only have one site with 4 DCs listed (3 in main office and 1 in branch office).  Under subnets the only subnet listed is the main office subnet.  Should I just add the branch office subnet here and that's it?  Or do I need to add another site and set it up that way?  I don't want to make this complicated but just want to be sure I minimize the traffic on the WAN the best I can.  Any help is appreciated!  
0
Comment
Question by:cbsykes
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 3
6 Comments
 
LVL 57

Accepted Solution

by:
Mike Kline earned 500 total points
ID: 36710258
Create a new site and associate the subnet in that remote office to that site.   You need to add the new subnet.

Then you create a site link between the current site and the new site and move the DC to that site and you should be good to go.

Users in that subnet in the remote office should use their local DC for authentication.

Thanks

Mike
0
 

Author Comment

by:cbsykes
ID: 36710293
ok.....So basically, create a new site, add the branch office subnet within that new site, then add the branch office DC in that site, then link the two sites together using IP?
0
 
LVL 57

Assisted Solution

by:Mike Kline
Mike Kline earned 500 total points
ID: 36710350
You would create a new site link (see screenshot) call it something like HQ to Remote

Thanks

Mike
newSiteLink.jpg
0
Office 365 Training for Admins - 7 Day Trial

Learn how to provision tenants, synchronize on-premise Active Directory, implement Single Sign-On, customize Office deployment, and protect your organization with eDiscovery and DLP policies.  Only from Platform Scholar.

 

Author Comment

by:cbsykes
ID: 36710367
ok gotcha...so once the site is created I just add the DC to that site and add the branch office subnet to the subnets folder?
0
 

Author Comment

by:cbsykes
ID: 36710401
ok....think i read your post wrong...in your first post you said create a new site...then your last post you said create a new site link...just want to make sure I'm understanding here....would I do both or just the site link?  
0
 
LVL 57

Assisted Solution

by:Mike Kline
Mike Kline earned 500 total points
ID: 36710424
Yes do both, create the site and the site link,  more info/steps   http://technet.microsoft.com/en-us/library/cc776511(WS.10).aspx

Thanks

Mike
0

Featured Post

On Demand Webinar - Networking for the Cloud Era

This webinar discusses:
-Common barriers companies experience when moving to the cloud
-How SD-WAN changes the way we look at networks
-Best practices customers should employ moving forward with cloud migration
-What happens behind the scenes of SteelConnect’s one-click button

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article describes my battle tested process for setting up delegation. I use this process anywhere that I need to setup delegation. In the article I will show how it applies to Active Directory
This article demonstrates probably the easiest way to configure domain-wide tier isolation within Active Directory. If you do not know tier isolation read https://technet.microsoft.com/en-us/windows-server-docs/security/securing-privileged-access/s…
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …
Suggested Courses

622 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question