Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
?
Solved

PC logging into AD on another site

Posted on 2014-09-15
9
Medium Priority
?
146 Views
Last Modified: 2014-09-15
We have PCs at our corporate site authenticating and running their logon scripts from one of our other sites. I have checked my site settings, but need to guidance. We are still running Windows 2003, but will be upgrading to Windows 2012 before long,
0
Comment
Question by:Greg Girten
  • 6
  • 3
9 Comments
 
LVL 3

Expert Comment

by:Brandon
ID: 40323884
IF you have multiple authentication servers on your network the user's machine will authenticate with the first server that responds to their request.

In addition, the servers will replicate themselves and their logon information. So without more information I would say your network is working as it should.

http://technet.microsoft.com/en-us/library/cc782048(v=ws.10).aspx
0
 
LVL 2

Author Comment

by:Greg Girten
ID: 40323910
The server responding is over a 1.5mb mpls circuit rather than one of the DC on the local site.
0
 
LVL 3

Expert Comment

by:Brandon
ID: 40323923
Ok, so you have domain.local located at site.A and site.B.

On the local domain server at site.B you created a logon script for the users at site.B.

Site.A users are starting to also run the site.B logon scripts.

Is the logon script assigned to just an OU group for site.B?

Is this correct...just trying to map out your network in my mind first.
0
Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 
LVL 2

Author Comment

by:Greg Girten
ID: 40323941
Everyone runs the same script. The scripts looks at the groups the user belongs and sets mapped drives accordingly. I just changed this portion to us their IP address rather than their logon server to pull files that need to be pushed to the PC. That works fine. I also display the username and which logon server they are using. This is where I find they are not using the closest server.

Since I changed the script to use the IP address to decide which server to download files from, the logon process is much faster, but I am still wondering why my users are using a remote server rather than a local server. I believe I may have something not quite rite in Sites and Services. Just needing a little guidance as to where to look.
0
 
LVL 3

Accepted Solution

by:
Brandon earned 2000 total points
ID: 40323980
Perhaps the GC is not cached so the user's machine authenticated with the remote server and now uses that server until it doesn't respond fast enough. Check out the link below and scroll down a little more than half way. (or search for Configuring a global catalog server within the page to drop you down to the right space)

http://www.techrepublic.com/article/solutionbase-a-look-at-windows-server-2003s-active-directory-sites-and-services/
0
 
LVL 3

Expert Comment

by:Brandon
ID: 40323995
0
 
LVL 3

Expert Comment

by:Brandon
ID: 40324003
One more with some additional links to make sure your subnets are correctly setup in the Sites mmc.

http://social.technet.microsoft.com/Forums/windowsserver/en-US/5c6bf542-caf2-4a4f-9490-c90d6ed196a0/clients-authenticating-to-wrong-domain-controllers
0
 
LVL 2

Author Closing Comment

by:Greg Girten
ID: 40324042
Thanks for the link. It was a new subnet added but not added to sites and services.  I figured it would be something simple, just needed a little direction. Thanks
0
 
LVL 3

Expert Comment

by:Brandon
ID: 40324049
Awesome, good job.
0

Featured Post

Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Have you considered what group policies are backwards and forwards compatible? Windows Active Directory servers and clients use group policy templates to deploy sets of policies within your domain. But, there is a catch to deploying policies. The…
Citrix XenApp, Internet Explorer 11 set to Enterprise Mode and using central hosted sites.xml file.
This video Micro Tutorial explains how to clone a hard drive using a commercial software product for Windows systems called Casper from Future Systems Solutions (FSS). Cloning makes an exact, complete copy of one hard disk drive (HDD) onto another d…
Windows 8 comes with a dramatically different user interface known as Metro. Notably missing from the new interface is a Start button and Start Menu. Many users do not like it, much preferring the interface of earlier versions — Windows 7, Windows X…
Suggested Courses

569 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question