Sites and services without NTDS settings
Posted on 2014-12-22
I have a customer that AD is running into some replication issues. After further investigation, we realized that Inside Active Directory Sites and Subnets are listed two servers. Server 2 and Server 2 which are not currently Domain Controllers.
They are listed inside sites and services but do not contain the NTDS settings that would associate it to DC authentications. The result is that it may take longer for clients to authenticate from the sites those servers are associated to.
Below are the IP sites those servers are currently configured for.
• Server1 – Site 10.21.0.0/16
• Server2 – Site 10.100.0.0/16
Would it be OK if I remove those sites?
How can I validate that there are no users/computers authenticating against those sites? Any way to prevent this and make sure they will pick another DC?
Do you believe that by removing those sites that could fix our replication issues?