Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 132
  • Last Modified:

Server Authendication

I have 4 member servers & 2 Domain controllers in a site.

Now the member servers are being authenticated by both the DC's, But I want all the 4 servers to be authenticated by One Single DC.

I tried restarting all the 4 members servers but every time I restart it gets authenticated by a different DC.

Is that possible to configure the authentication to one Single domain controller, if so how do I configure it.

Please assist me in getting this configured.
0
Seshadrim
Asked:
Seshadrim
2 Solutions
 
Emmanuel AdebayoGlobal Windows Infrastructure Engineer - ConsultantCommented:
Hi,

You can
1. Adjusting the Weight for DNS SRV Records in the Registry
2. Adjusting the Priority for DNS SRV Records in the Registry

http://technet.microsoft.com/en-us/library/cc787370%28WS.10%29.aspx

Regards
0
 
Cliff GaliherCommented:
You can't force this. You can influence it, but if a DC gets busy enough, another may still respond first. Since DC databases are multimaster, why would you *want* to do thus?? What underlying problem are you trying to solve??
0
 
Natty GregIn Theory (IT)Commented:
If its not broken don't bother fix it, as mention above why do you want to change this?
What if you change it then the one doing the authentication fail, what would you do?
0
 
Zacharia KurianAdministrator- Data Center & NetworkCommented:
I have 4 member servers & 2 Domain controllers in a site.

So you have a PDC and an additional domain (which is very typical in a small environment).

The priority of authentication depends on  the workload on the PDC emulator master i.e.  your domain knows the best way for the authentication.

In a very large environment , reducing the workload on the PDC emulator master is required and it is done through "Adjusting the Weight for DNS SRV Records in the Registry" and "Adjusting the Priority for DNS SRV Records in the Registry".

In your case since you have only just 2 DCs, it is recommended to keep them as it is; unless you have any issues right now.

The below link is worth reading;

http://blogs.msmvps.com/acefekay/2010/01/03/the-dc-locator-process-the-logon-process-controlling-which-dc-responds-in-an-ad-site-and-srv-records/
0

Featured Post

Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Tackle projects and never again get stuck behind a technical roadblock.
Join Now