Solved

Theoretical Failure of FSMO Domain Controller and the Continued Functioning of Active Directory.

Posted on 2014-09-23
4
141 Views
Last Modified: 2014-09-30
I am wondering about the following theoretical scenario.  

In it you have a simple Active Directory based domain being replicated between a few Windows Domain Controllers, and the Domain Controller with which the FSMO or Operations Master Role resides fails or dies.  

In this case, how objectively redundant (not to be mixed up with marketing radiation terms for redundant) is Active Directory in this case?  IE how long will all of the AD hosted up services continue to operate before issues start to occur?  Assume FSMO roles have not been seized etc.

If the answer is something along the lines of AD is not really redundant and a FSMO roll based DC is essential to the health of AD.  Does server 2012 finally replicate or make the FSMO role spread across all DCs, or does it get rid of the concept altogether, integrating the 5 roles more deeply into the Active Directory replication process.

Thanks for the clarification and info.
0
Comment
Question by:CnicNV
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
4 Comments
 
LVL 18

Accepted Solution

by:
Don S. earned 500 total points
ID: 40340144
AD will continue to operate, serving authentication to whatever needs it.  It will not be able to effect any changes, however, until there is a PDC role active in the environment.  What that means is that you cannot add or change users, computers, etc.. until you seize at least the PDC role.
0
 

Author Comment

by:CnicNV
ID: 40341710
Ok, this is really good information and what I was after.  Just one more thing.  Do you know if Server 2012's implementation of Active Directory still relies on the FSMO or later renamed to Operations Master role DCs being in the replication topology?
0
 
LVL 18

Expert Comment

by:Don S.
ID: 40347239
2012 does not change the basic operation of domain authentication or replication.  There is still only one master for each roll.
0
 

Author Closing Comment

by:CnicNV
ID: 40352183
Ok this is perfect.

Thanks for all of the information, it is appreciated.
0

Featured Post

Major Incident Management Communications

Major incidents and IT service outages cost companies millions. Often the solution to minimizing damage is automated communication. Find out more in our Major Incident Management Communications infographic.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The environment that this is running in is SCCM 2007 R2 running on a Windows 2008 R2 server. The PXE Distribution point is running on its own Windows 2008 R2 box. This is what Event viewer showed after trying to start the WDS service:  An erro…
Welcome to my series of short tips on migrations. Whilst based on Microsoft migrations the same principles can be applied to any type of migration. My first tip Migration Tip #1 – Source Server Health can be found here: http://www.experts-exchang…
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…
Finding and deleting duplicate (picture) files can be a time consuming task. My wife and I, our three kids and their families all share one dilemma: Managing our pictures. Between desktops, laptops, phones, tablets, and cameras; over the last decade…

710 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question