New DC or child domain
HI,
I am setting up a new remote office in Hong Kong, and would like it to be as secure as possible ( as it is China ) and not have all current AD information replicated to the Hong Kong office, so was wonder if a child domain would be the best solution?
Hong Kong office will be using the current Exchane 2010 server in the parent domain and some resorces in the parent domain.
So the main purpose would be security to prevent head office user accounts residing on a Hong Kong server.
Thanks,
Brett
I am setting up a new remote office in Hong Kong, and would like it to be as secure as possible ( as it is China ) and not have all current AD information replicated to the Hong Kong office, so was wonder if a child domain would be the best solution?
Hong Kong office will be using the current Exchane 2010 server in the parent domain and some resorces in the parent domain.
So the main purpose would be security to prevent head office user accounts residing on a Hong Kong server.
Thanks,
Brett
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
kevinhsieh
I agree that RODC is a much better idea.
If You Have 15 to 20 Users and You want Secure way of replication then RODC is best
Install RODC in Server Core :
http://technet.microsoft.com/en-us/library/cc754629(v=ws.10).aspx#bkmk_installSrvFound
Hope it Helps
Regards,
Osama Mansoor
Install RODC in Server Core :
http://technet.microsoft.com/en-us/library/cc754629(v=ws.10).aspx#bkmk_installSrvFound
Hope it Helps
Regards,
Osama Mansoor
ASKER
Excellent - totally overlooked RODC - thanks :)
You're welcome :)
Krzysztof
Krzysztof