I had this question after viewing
Advice on fixing AD replication.
So after everyone helped me resolve my replication tweak, I would appreciate some advice on my next task- creating a RODC on an extended perimeter network.
I need to create a new RODC on a new subnet that will be part of our existing domain. It will be a new "DMZ" site in ADSS. It will be located in the same colocation facility as my "VPN" site. My plan is to create a site link b/t the "DMZ" and "VPN" sites so the RODC only communicates with the local writable DC in the subnet closest to it.
I'm reading through all the TechNet guides now on all the various tasks to do (firewall rules, password policies, filtered attribute set).
I've created a server-core install of W2K12.
If anyone has any advice on their favorite doc that walks me through the details for this scenario, that would be greatly appreciated. TechNet is lacking on the details sometimes
Our community of experts have been thoroughly vetted for their expertise and industry experience.
The Distinguished Expert awards are presented to the top veteran and rookie experts to earn the most points in the top 50 topics.