Solved

Server Authendication

Posted on 2014-09-16
4
124 Views
Last Modified: 2014-10-02
I have 4 member servers & 2 Domain controllers in a site.

Now the member servers are being authenticated by both the DC's, But I want all the 4 servers to be authenticated by One Single DC.

I tried restarting all the 4 members servers but every time I restart it gets authenticated by a different DC.

Is that possible to configure the authentication to one Single domain controller, if so how do I configure it.

Please assist me in getting this configured.
0
Comment
Question by:Seshadrim
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
4 Comments
 
LVL 17

Assisted Solution

by:Emmanuel Adebayo
Emmanuel Adebayo earned 250 total points
ID: 40326574
Hi,

You can
1. Adjusting the Weight for DNS SRV Records in the Registry
2. Adjusting the Priority for DNS SRV Records in the Registry

http://technet.microsoft.com/en-us/library/cc787370%28WS.10%29.aspx

Regards
0
 
LVL 58

Expert Comment

by:Cliff Galiher
ID: 40326618
You can't force this. You can influence it, but if a DC gets busy enough, another may still respond first. Since DC databases are multimaster, why would you *want* to do thus?? What underlying problem are you trying to solve??
0
 
LVL 12

Expert Comment

by:Natty Greg
ID: 40326691
If its not broken don't bother fix it, as mention above why do you want to change this?
What if you change it then the one doing the authentication fail, what would you do?
0
 
LVL 9

Accepted Solution

by:
Zacharia Kurian earned 250 total points
ID: 40327403
I have 4 member servers & 2 Domain controllers in a site.

So you have a PDC and an additional domain (which is very typical in a small environment).

The priority of authentication depends on  the workload on the PDC emulator master i.e.  your domain knows the best way for the authentication.

In a very large environment , reducing the workload on the PDC emulator master is required and it is done through "Adjusting the Weight for DNS SRV Records in the Registry" and "Adjusting the Priority for DNS SRV Records in the Registry".

In your case since you have only just 2 DCs, it is recommended to keep them as it is; unless you have any issues right now.

The below link is worth reading;

http://blogs.msmvps.com/acefekay/2010/01/03/the-dc-locator-process-the-logon-process-controlling-which-dc-responds-in-an-ad-site-and-srv-records/
0

Featured Post

Comprehensive Backup Solutions for Microsoft

Acronis protects the complete Microsoft technology stack: Windows Server, Windows PC, laptop and Surface data; Microsoft business applications; Microsoft Hyper-V; Azure VMs; Microsoft Windows Server 2016; Microsoft Exchange 2016 and SQL Server 2016.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article outlines the process to identify and resolve account lockout in an Active Directory environment.
Did you know that more than 4 billion data records have been recorded as lost or stolen since 2013? It was a staggering number brought to our attention during last week’s ManageEngine webinar, where attendees received a comprehensive look at the ma…
This tutorial will walk an individual through the steps necessary to enable the VMware\Hyper-V licensed feature of Backup Exec 2012. In addition, how to add a VMware server and configure a backup job. The first step is to acquire the necessary licen…
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …

733 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question