How big does AD have to be (and how slow does the link need to be) to justify installing a new domain controller in a regional office using the IFM (Install From Media) method?
I think we'll have a 50 mbps symmetrical site-to-site VPN.
Our NTDS folder is 375 megs in size.
Should I use IFM or just do it the regular way?
I'm no pro so picking the easy method is very much preferable.
Reading about IFM here:
I became concerned reading this passage:
The next steps are required to change the SYSVOL folder security settings. These steps change the file hash, which will become the same file hash as in the IFM. If you use DFS Replication, SYSVOL will keep the presided data only if the file hash on the source domain controller and the destination server are the same
On the destination server, right-click the SYSVOL folder, and then click Properties.
Click the Security tab, and then click Advanced.
Click the Auditing tab, and then click Edit.
Clear the Include inheritable auditing entries from this object’s parent check box, and then select it again.
Click Apply, and then click OK.
The existing domain controllers are Server 2012 and the new one will be Server 2016. The functional level will remain at Server 2008 R2