?
Solved

PC logging into AD on another site

Posted on 2014-09-15
9
Medium Priority
?
144 Views
Last Modified: 2014-09-15
We have PCs at our corporate site authenticating and running their logon scripts from one of our other sites. I have checked my site settings, but need to guidance. We are still running Windows 2003, but will be upgrading to Windows 2012 before long,
0
Comment
Question by:vnahc
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 6
  • 3
9 Comments
 
LVL 3

Expert Comment

by:Brandon
ID: 40323884
IF you have multiple authentication servers on your network the user's machine will authenticate with the first server that responds to their request.

In addition, the servers will replicate themselves and their logon information. So without more information I would say your network is working as it should.

http://technet.microsoft.com/en-us/library/cc782048(v=ws.10).aspx
0
 
LVL 2

Author Comment

by:vnahc
ID: 40323910
The server responding is over a 1.5mb mpls circuit rather than one of the DC on the local site.
0
 
LVL 3

Expert Comment

by:Brandon
ID: 40323923
Ok, so you have domain.local located at site.A and site.B.

On the local domain server at site.B you created a logon script for the users at site.B.

Site.A users are starting to also run the site.B logon scripts.

Is the logon script assigned to just an OU group for site.B?

Is this correct...just trying to map out your network in my mind first.
0
Office 365 Training for IT Pros

Learn how to provision tenants, synchronize on-premise Active Directory, implement Single Sign-On, customize Office deployment, and protect your organization with eDiscovery and DLP policies.  Only from Platform Scholar.

 
LVL 2

Author Comment

by:vnahc
ID: 40323941
Everyone runs the same script. The scripts looks at the groups the user belongs and sets mapped drives accordingly. I just changed this portion to us their IP address rather than their logon server to pull files that need to be pushed to the PC. That works fine. I also display the username and which logon server they are using. This is where I find they are not using the closest server.

Since I changed the script to use the IP address to decide which server to download files from, the logon process is much faster, but I am still wondering why my users are using a remote server rather than a local server. I believe I may have something not quite rite in Sites and Services. Just needing a little guidance as to where to look.
0
 
LVL 3

Accepted Solution

by:
Brandon earned 2000 total points
ID: 40323980
Perhaps the GC is not cached so the user's machine authenticated with the remote server and now uses that server until it doesn't respond fast enough. Check out the link below and scroll down a little more than half way. (or search for Configuring a global catalog server within the page to drop you down to the right space)

http://www.techrepublic.com/article/solutionbase-a-look-at-windows-server-2003s-active-directory-sites-and-services/
0
 
LVL 3

Expert Comment

by:Brandon
ID: 40323995
0
 
LVL 3

Expert Comment

by:Brandon
ID: 40324003
One more with some additional links to make sure your subnets are correctly setup in the Sites mmc.

http://social.technet.microsoft.com/Forums/windowsserver/en-US/5c6bf542-caf2-4a4f-9490-c90d6ed196a0/clients-authenticating-to-wrong-domain-controllers
0
 
LVL 2

Author Closing Comment

by:vnahc
ID: 40324042
Thanks for the link. It was a new subnet added but not added to sites and services.  I figured it would be something simple, just needed a little direction. Thanks
0
 
LVL 3

Expert Comment

by:Brandon
ID: 40324049
Awesome, good job.
0

Featured Post

Optimize your web performance

What's in the eBook?
- Full list of reasons for poor performance
- Ultimate measures to speed things up
- Primary web monitoring types
- KPIs you should be monitoring in order to increase your ROI

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Welcome to my series of short tips on migrations. Whilst based on Microsoft migrations the same principles can be applied to any type of migration. My first tip Migration Tip #1 – Source Server Health can be found listed in my profile here: http:…
Ever notice how you can't use a new drive in Windows without having Windows assigning a Disk Signature?  Ever have a signature collision problem (especially with Virtual Machines?)  This article is intended to help you understand what's going on and…
This video Micro Tutorial explains how to clone a hard drive using a commercial software product for Windows systems called Casper from Future Systems Solutions (FSS). Cloning makes an exact, complete copy of one hard disk drive (HDD) onto another d…
In this video, we discuss why the need for additional vertical screen space has become more important in recent years, namely, due to the transition in the marketplace of 4x3 computer screens to 16x9 and 16x10 screens (so-called widescreen format). …
Suggested Courses

801 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question