Improve company productivity with a Business Account.Sign Up

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 283
  • Last Modified:

Active Directory Logon Question

Have a general question about Active Directory Logon.   We have a WIndows 2008 server acting as domain controler.   Also have another 2008 server running active directory services as well.  I can see that some computers when they logon are logging on to our domain via the 1st server (primary I call it) and some onto our secondary.   My question is that sometimes when we do updates and restart our primary server some users need to logoff and log back on during that time.   Because of that restart (and the fact that they were logged on via the primary) is that why they are having to logoff/logon?   Or should it be a more seamless transition and perhaps something isn't set quite right?   If that is the way it should work I am fine with it, just want to make sure.
Thanks!
0
BCHCAdmin
Asked:
BCHCAdmin
2 Solutions
 
uescompCommented:
Yes because the accounts authenticate to the AD server, if that server goes down they will probably get prompt for a username and password but will not be able to authenticate because AD is down so it does not know what to do, a simple log off and login fixes it because the user account reauthenticates to the server.

I assume you have 2 domain controllers and they might not be in sync or DHCP is not configured correctly in which Primary DNS should point to your primary domain controller and then Secondary DNS should point to your 2nd domain controller.  If the primary goes down users should be unaffected (maybe a little bit of lag but not noticable) because the system should fail-over to the 2nd domain controller according to DNS.
0
 
Mike KlineCommented:
Are clients pointing to both for DNS?   Are both DCs Global Catalogs?  

They should failover to the other DC, see this blog from Florian

http://www.frickelsoft.net/blog/?p=278

Thanks

Mike
0
 
BCHCAdminAuthor Commented:
mkline71,
Our DHCP server had not been updated with the DNS for our second domain controller so I changed that.    It was pointing to an old DC for secondary DNS.  

Both machines are global catalogs.  

Do you think the DNS secondary server not being correct may have been playing a part in this?
Thanks
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Upgrade your Question Security!

Your question, your audience. Choose who sees your identity—and your question—with question security.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now