AD Design Clarification

infiniti7181
infiniti7181 used Ask the Experts™
on
Team ,

I have a scenario , where i have an enterprise client having three main offices ( of 500 users each ), hence three DC's present . This client has around 400 branches , where each branch there are 40 - 50 users each .

Related with MS AD and Authentication as AAA , is it advisable to have Servers(AD) in each branch and DC or only on DC with some branches

Regards
Sid
Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
MASEE Solution Guide - Technical Dept Head
Most Valuable Expert 2017
Commented:
If you are not an expert of AD/DS I recommend not to create ADCs/RODC in branches.
If the link goes down remove the LAN cable and login to the domain as it will take cached password.
If you are an expert create ADSite for each branch and install ADC or RODC(recommended) on each branch and make sure your DCs are replicating each other and monitor DC replication regularly using any 3rd party tool

Author

Commented:
Hi  MAS , thanks for the response. Which tool do you recommend for monitoing DC replication ?

regeards
SID
Expert Spotlight: Joe Anderson (DatabaseMX)

We’ve posted a new Expert Spotlight!  Joe Anderson (DatabaseMX) has been on Experts Exchange since 2006. Learn more about this database architect, guitar aficionado, and Microsoft MVP.

EE Solution Guide - Technical Dept Head
Most Valuable Expert 2017
Commented:
If you can afford use ManageEngine ADManager Plus.
Else you can try free tools which will do basic monitoring.
I have to search my KB for the names of free tools.
MASEE Solution Guide - Technical Dept Head
Most Valuable Expert 2017

Commented:
Thanks for selecting an answer.
I appreciate if you mark other comment as answer which will help others in future.
Shaun VermaakTechnical Specialist
Awarded 2017
Distinguished Expert 2018
Commented:
for each branch and install ADC or RODC(recommended) on each branch
A full DC is recommended and a RODC only if site cannot ensure physical security of Domain Controller

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial