mikey250
asked on
dc logon & domain member logon query
hi, could i please get some advice regarding the below :
question 1.
when i run 'dcpromo' on the master dc, this is the same password i always use to logon to the domain controller obviously, but i always use this same username & password to logon to all the domain controllers and what i did not realise until recently is that if i save files in my documents where i always save stuff on my master dc. i can also logon with the same username & password on my domain member server and still see those same files i saved. what i wanted to know is should i create a separate username & password to logon to each of the domain member servers so they have their own ?
question 2.
as i logon to each domain member server which is the same 'username & password' as the domain controller, as i have not created anymore should i create a roaming folder just like i would for normal domain users ?
question 1.
when i run 'dcpromo' on the master dc, this is the same password i always use to logon to the domain controller obviously, but i always use this same username & password to logon to all the domain controllers and what i did not realise until recently is that if i save files in my documents where i always save stuff on my master dc. i can also logon with the same username & password on my domain member server and still see those same files i saved. what i wanted to know is should i create a separate username & password to logon to each of the domain member servers so they have their own ?
question 2.
as i logon to each domain member server which is the same 'username & password' as the domain controller, as i have not created anymore should i create a roaming folder just like i would for normal domain users ?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
morning Mahesh thanks for that useful info. appreciated.
ASKER
sound advice. appreciated.
ASKER
"so you have a username and password you use to log onto the dc's, should you have a separate username and password for each dc. no you should not."
- i only have 1 single dc, but if i had 2 or more, no i would still use the same username & password - im ok with that as i was referring to my dc.
"your files in my documents are available on all servers, this is down to group policy and folder redirection, i wouldn't be too concerned about this."
"no you should not create a roaming profile for server based accounts. it's not terrible but bad practice since you can fill up the c:\ quite quickly if you have a large roaming profile, also it'll increase your logon times to servers which you haven't logged onto previously."
- ok that is ok as had to make sure.
because when i use the domain administrator logon, i do not create redirection/roaming folder, like i would with domain user accounts, so i assume this is normal as administrators have access to each server anyway by default....unless i wanted to track my domain admin logon of daily use, just like a domain user account...thats my understanding, but if i did want to track the administrator i assume looking in the eventviewer for example is a way to do so. so again i assume setting up a redirection/roamin folder for a domain admin is of no use.
question 1. what there was an issue with logging on with my domain admin logon my my master dc and i could maybe fix it or not, but i needed to change something for another user for example, then i assume when i use the same domain admin account to logon to a domain member server that this would have issues logging on as it is connected to the master dc ?