Solved

Pinging mydomain.local from server in GQ returns IP of branch DC

Posted on 2014-02-04
2
474 Views
Last Modified: 2016-12-08
Hi All

I have a multisite single forest / domain, We have majority of our servers in London and all subnets in use in London are applied to the London AD site.

We have a few branch offices and the subnets in use in each are correctly applied to the respective AD site.

Issue i have is a couple of App servers at our London HQ use LDAP to authenticate people e.g one problem app is our Jira support desk system, we are getting intermittent logon issues where users are not authenticated, a few mins later it works.

I have checked the event logs and done a dcdiag on the DC's and also checked all of the time sync between DC's and the meber servers involved and everything is good.

One thing i have noticed is if from our Jira server (which is on a subnet linked to the London AD site) if i ping just our domain name mydomain.local I actually get the IP address back of a DC in Singapore. the DNS servers that the Jira server has configured are 2 domain controllers in the London site

Any ideas why this icould be happening if my AD sites are configured correctly

Thanks
0
Comment
Question by:ncomper
2 Comments
 
LVL 19

Accepted Solution

by:
Patricksr1972 earned 500 total points
ID: 39832216
Sounds like Singapore was the fastests to respond.

You can configure ldapsrv records to authenticate against specific DC.

Domain Controller Locator : an overview

http://blogs.technet.com/b/arnaud_jumelet/archive/2010/07/05/domain-controller-locator-an-overview.aspx

Or simply set:

set logonserver=\\Domain Controller name

On the server that got lost in the serverworld.

set logonserver       simply tells you on what DC authentication is handled.
0
 
LVL 5

Author Closing Comment

by:ncomper
ID: 39832801
Thanks
0

Featured Post

NAS Cloud Backup Strategies

This article explains backup scenarios when using network storage. We review the so-called “3-2-1 strategy” and summarize the methods you can use to send NAS data to the cloud

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A procedure for exporting installed hotfix details of remote computers using powershell
Last week, our Skyport webinar on “How to secure your Active Directory” (https://www.experts-exchange.com/videos/5810/Webinar-Is-Your-Active-Directory-as-Secure-as-You-Think.html) provided 218 attendees with a step-by-step guide for identifying Acti…
This tutorial will walk an individual through the steps necessary to configure their installation of BackupExec 2012 to use network shared disk space. Verify that the path to the shared storage is valid and that data can be written to that location:…
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …

813 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

9 Experts available now in Live!

Get 1:1 Help Now