?
Solved

Active Directory Sites And Services

Posted on 2013-11-01
8
Medium Priority
?
354 Views
Last Modified: 2013-11-04
We have our corporate office with 2 domain contollers and 1 offsite domain controller
A and B are at the corporate office and C is offsite. Right now thru active directory sites and services we have A replicating with B, and B replicating with C. Should this be setup so that all domain controllers replicate to eachother too?
0
Comment
Question by:portillosjohn
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
8 Comments
 
LVL 10

Expert Comment

by:convergint
ID: 39616733
Ideally yes so you have a fully redundant Active Directory.  But it is also not a requirement either.
0
 
LVL 35

Expert Comment

by:Seth Simmons
ID: 39616742
just to add, you could setup an additional link at a higher cost between A and C so that if the B-C link broke (server down, etc.) then C would still be able to talk directly to A

i had done that at my previous place between 4 different sites; redundant links at a higher cost and worked fine for us
0
 
LVL 57

Expert Comment

by:Mike Kline
ID: 39616774
Right now do you have one site in active directory or two sites.   The KCC is building those connection objects for you and if replication is working fine I'd leave it as is.

Thanks

Mike
0
Veeam Disaster Recovery in Microsoft Azure

Veeam PN for Microsoft Azure is a FREE solution designed to simplify and automate the setup of a DR site in Microsoft Azure using lightweight software-defined networking. It reduces the complexity of VPN deployments and is designed for businesses of ALL sizes.

 

Author Comment

by:portillosjohn
ID: 39616858
Right now we have 2 sites. 1 site has DCs A and B and the other site has DC C.
0
 
LVL 57

Expert Comment

by:Mike Kline
ID: 39616877
Then they don't all need connections to each other.  As long as replication is working (repadmin or the ad replication status tool can help verify that0.

Thanks


Mike
0
 

Author Comment

by:portillosjohn
ID: 39616886
So if we were going to add a 3rd site with DC D how should the repliacation go?
0
 
LVL 57

Expert Comment

by:Mike Kline
ID: 39616917
I'm guessing the third site will have connectivity with HQ?   I'd add a site link between HQ and Site 3 and let the KCC build the connection objects.

Thanks

Mike
0
 
LVL 4

Accepted Solution

by:
rajivkumar07 earned 2000 total points
ID: 39617008
Rule of the thumb = Distance.

For example - If you have 2 DCs ( A & B) in Ohio, 1 DC ( C ) in California, 1 DC ( D ) in New York.

Replication should be something like this -

A < > B
A and B < > C
A and B < > D
C and D don't need replication, however, if you want, yes you can set it up with the low priority level.
0

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Auditing domain password hashes is a commonly overlooked but critical requirement to ensuring secure passwords practices are followed. Methods exist to extract hashes directly for a live domain however this article describes a process to extract u…
This process allows computer passwords to be managed and secured without using LAPS. This is an improvement on an existing process, enhanced to store password encrypted, instead of clear-text files within SQL
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …
Suggested Courses

771 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question