Solved

Theoretical Failure of FSMO Domain Controller and the Continued Functioning of Active Directory.

Posted on 2014-09-23
4
144 Views
Last Modified: 2014-09-30
I am wondering about the following theoretical scenario.  

In it you have a simple Active Directory based domain being replicated between a few Windows Domain Controllers, and the Domain Controller with which the FSMO or Operations Master Role resides fails or dies.  

In this case, how objectively redundant (not to be mixed up with marketing radiation terms for redundant) is Active Directory in this case?  IE how long will all of the AD hosted up services continue to operate before issues start to occur?  Assume FSMO roles have not been seized etc.

If the answer is something along the lines of AD is not really redundant and a FSMO roll based DC is essential to the health of AD.  Does server 2012 finally replicate or make the FSMO role spread across all DCs, or does it get rid of the concept altogether, integrating the 5 roles more deeply into the Active Directory replication process.

Thanks for the clarification and info.
0
Comment
Question by:CnicNV
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
4 Comments
 
LVL 18

Accepted Solution

by:
Don S. earned 500 total points
ID: 40340144
AD will continue to operate, serving authentication to whatever needs it.  It will not be able to effect any changes, however, until there is a PDC role active in the environment.  What that means is that you cannot add or change users, computers, etc.. until you seize at least the PDC role.
0
 

Author Comment

by:CnicNV
ID: 40341710
Ok, this is really good information and what I was after.  Just one more thing.  Do you know if Server 2012's implementation of Active Directory still relies on the FSMO or later renamed to Operations Master role DCs being in the replication topology?
0
 
LVL 18

Expert Comment

by:Don S.
ID: 40347239
2012 does not change the basic operation of domain authentication or replication.  There is still only one master for each roll.
0
 

Author Closing Comment

by:CnicNV
ID: 40352183
Ok this is perfect.

Thanks for all of the information, it is appreciated.
0

Featured Post

Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Issue: One Windows 2008 R2 64bit server on the network unable to connect to a buffalo Device (Linkstation) with firmware version 1.56. There are a total of four servers on the network this being one of them. Troubleshooting Steps: Connect via h…
Background Information Recently I have fixed file server permission issues for one of my client. The client has 1800 users and one Windows Server 2008 R2 domain joined file server with 12 TB of data, 250+ shared folders and the folder structure i…
In this video, viewers are given an introduction to using the Windows 10 Snipping Tool, how to quickly locate it when it's needed and also how make it always available with a single click of a mouse button, by pinning it to the Desktop Task Bar. Int…
There's a multitude of different network monitoring solutions out there, and you're probably wondering what makes NetCrunch so special. It's completely agentless, but does let you create an agent, if you desire. It offers powerful scalability …
Suggested Courses

626 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question