Solved

Question regarding Read Only DC

Posted on 2015-02-03
4
40 Views
Last Modified: 2015-02-10
I have a question for Read Only DC. I have been asked to provide the script to make users who travel to remote location to make sure they authenticate to the Read Only DC when they travel....I am trying to understand how this works and what are the prerequisites? What do we need in order to make sure that users who travel to specific site where we have Read Only DC will authenticate to that RODC? Does this relates to users, computer,  group accounts as well? What do we need to identify?

Please let me know.
Thank you.
0
Comment
Question by:creative555
4 Comments
 
LVL 17

Accepted Solution

by:
OriNetworks earned 500 total points
ID: 40586875
No script should be needed. The following 2 links give some more information about how the RODCs work and frequent questions. I think what you need to investigate is how sites and services are set up. This ultimately dictates which domain controller a client authenticates with.

http://blogs.technet.com/b/askds/archive/2008/01/18/understanding-read-only-domain-controller-authentication.aspx

https://technet.microsoft.com/en-us/library/cc754956(v=ws.10).aspx
0
 
LVL 80

Expert Comment

by:David Johnson, CD, MVP
ID: 40586884
their domain controller will be set via dhcp and there you set the rodc as the domain controller
0
 
LVL 36

Expert Comment

by:Mahesh
ID: 40587153
If you have DHCP on RODC site, and if your users are not using static IPs, DHCP will assign them IP in subnet belonging to RODC and user will automatically get authenticated via RODC
Via RODC means RODC will authenticate user via R/W DC in another site
U may cache user password on RODC, however its not required

U have opened another question on same topic, check that for more details
0
 
LVL 12

Expert Comment

by:Bryant Schaper
ID: 40587599
Sites and Services is off, this defines the DC.  Maybe you not have the subnets assigned to the correct sites.
0

Featured Post

Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article shows how to deploy dynamic backgrounds to computers depending on the aspect ratio of display
In-place Upgrading Dirsync to Azure AD Connect
This tutorial will show how to configure a new Backup Exec 2012 server and move an existing database to that server with the use of the BEUtility. Install Backup Exec 2012 on the new server and apply all of the latest hotfixes and service packs. The…
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …

840 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question