Solved

Domain controller on seperate site

Posted on 2013-02-04
3
233 Views
Last Modified: 2013-02-04
I have one main network with 3DC's and another remote site with one DC (all part of the one AD). I have recently merged with another company and have a trust in place. They will be accessing resources off my network. When they logon and authenticate on my network for some reason they are being sent to the remote site DC as oppose to the main network DC's. I understand sites and services is the place to go (I think?) I have never set up this before but from my recollection I specify the IP ranges to be associated with the specific servers?
0
Comment
Question by:Sid_F
3 Comments
 
LVL 30

Accepted Solution

by:
Rich Weissler earned 250 total points
ID: 38851293
You'll want to associate specific SUBNETS to SITES.

In Sites and Services, drill down under Sites, then Subnets... and define subnets, and within the subnet, specify which site it is in.

(The domain controllers will use that information to determine which site they are in, so presumably the remote site subnets have already been defined.)
0
 
LVL 34

Assisted Solution

by:Paul MacDonald
Paul MacDonald earned 250 total points
ID: 38851313
In ADS&S you can set a "cost" on the various links between subnets.  Set a higher cost on the link to the standalone DC and a lower cost on the link to the main network.  That should resolve your issue.
0
 
LVL 6

Author Closing Comment

by:Sid_F
ID: 38851415
thanks
0

Featured Post

Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Setting up a Microsoft WSUS update system is free relatively speaking if you have hard disk space and processor capacity.   However, WSUS can be a blessing and a curse. For example, there is nothing worse than approving updates and they just have…
Find out how to use Active Directory data for email signature management in Microsoft Exchange and Office 365.
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …

803 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question