Solved

PC logging into AD on another site

Posted on 2014-09-15
9
140 Views
Last Modified: 2014-09-15
We have PCs at our corporate site authenticating and running their logon scripts from one of our other sites. I have checked my site settings, but need to guidance. We are still running Windows 2003, but will be upgrading to Windows 2012 before long,
0
Comment
Question by:vnahc
  • 6
  • 3
9 Comments
 
LVL 3

Expert Comment

by:Brandon
ID: 40323884
IF you have multiple authentication servers on your network the user's machine will authenticate with the first server that responds to their request.

In addition, the servers will replicate themselves and their logon information. So without more information I would say your network is working as it should.

http://technet.microsoft.com/en-us/library/cc782048(v=ws.10).aspx
0
 
LVL 2

Author Comment

by:vnahc
ID: 40323910
The server responding is over a 1.5mb mpls circuit rather than one of the DC on the local site.
0
 
LVL 3

Expert Comment

by:Brandon
ID: 40323923
Ok, so you have domain.local located at site.A and site.B.

On the local domain server at site.B you created a logon script for the users at site.B.

Site.A users are starting to also run the site.B logon scripts.

Is the logon script assigned to just an OU group for site.B?

Is this correct...just trying to map out your network in my mind first.
0
NAS Cloud Backup Strategies

This article explains backup scenarios when using network storage. We review the so-called “3-2-1 strategy” and summarize the methods you can use to send NAS data to the cloud

 
LVL 2

Author Comment

by:vnahc
ID: 40323941
Everyone runs the same script. The scripts looks at the groups the user belongs and sets mapped drives accordingly. I just changed this portion to us their IP address rather than their logon server to pull files that need to be pushed to the PC. That works fine. I also display the username and which logon server they are using. This is where I find they are not using the closest server.

Since I changed the script to use the IP address to decide which server to download files from, the logon process is much faster, but I am still wondering why my users are using a remote server rather than a local server. I believe I may have something not quite rite in Sites and Services. Just needing a little guidance as to where to look.
0
 
LVL 3

Accepted Solution

by:
Brandon earned 500 total points
ID: 40323980
Perhaps the GC is not cached so the user's machine authenticated with the remote server and now uses that server until it doesn't respond fast enough. Check out the link below and scroll down a little more than half way. (or search for Configuring a global catalog server within the page to drop you down to the right space)

http://www.techrepublic.com/article/solutionbase-a-look-at-windows-server-2003s-active-directory-sites-and-services/
0
 
LVL 3

Expert Comment

by:Brandon
ID: 40323995
0
 
LVL 3

Expert Comment

by:Brandon
ID: 40324003
One more with some additional links to make sure your subnets are correctly setup in the Sites mmc.

http://social.technet.microsoft.com/Forums/windowsserver/en-US/5c6bf542-caf2-4a4f-9490-c90d6ed196a0/clients-authenticating-to-wrong-domain-controllers
0
 
LVL 2

Author Closing Comment

by:vnahc
ID: 40324042
Thanks for the link. It was a new subnet added but not added to sites and services.  I figured it would be something simple, just needed a little direction. Thanks
0
 
LVL 3

Expert Comment

by:Brandon
ID: 40324049
Awesome, good job.
0

Featured Post

Live: Real-Time Solutions, Start Here

Receive instant 1:1 support from technology experts, using our real-time conversation and whiteboard interface. Your first 5 minutes are always free.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
SBS 2011 Rollup 18 110
How to install USMT 11 103
Server 2016 licensing 11 568
SQL install error 1722 problem with Installer, could not install automatically 7 64
This is a little timesaver I have been using for setting up Microsoft Small Business Server (SBS) in the simplest possible way. It may not be appropriate for every customer. However, when you get a situation where the person who owns the server is i…
The password reset disk is often mentioned as the best solution to deal with the lost Windows password problem. In Windows 2008, 7, Vista and XP, a password reset disk can be easily created. But besides Windows 7/Vista/XP, Windows Server 2008 and ot…
This video Micro Tutorial explains how to clone a hard drive using a commercial software product for Windows systems called Casper from Future Systems Solutions (FSS). Cloning makes an exact, complete copy of one hard disk drive (HDD) onto another d…
With the advent of Windows 10, Microsoft is pushing a Get Windows 10 icon into the notification area (system tray) of qualifying computers. There are many reasons for wanting to remove this icon. This two-part Experts Exchange video Micro Tutorial s…

815 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

9 Experts available now in Live!

Get 1:1 Help Now