Secondary Site on a DC
From: Jeff Singer (JeffSinger_at_discussions.microsoft.com)
Date: 09/09/04
- Next message: Jeff Singer: "RE: Network Discovery not working?"
- Previous message: Henry: "Installing clients"
- Next in thread: Kim Oppalfens: "Re: Secondary Site on a DC"
- Reply: Kim Oppalfens: "Re: Secondary Site on a DC"
- Reply: Carl Sullivan [MSFT]: "Re: Secondary Site on a DC"
- Messages sorted by: [ date ] [ thread ]
Date: Thu, 9 Sep 2004 14:39:03 -0700
It appears that making Domain Controllers a secondary site server is not an
uncommon idea... just one that is frowned on from a security perspective from
Microsoft.
I have my lab setup using SMS 2003 in Advanced Security mode. When creating
an address for the parent and child site to use would it be possible to use a
domain account instead of the computer account? Eventually, when this hits
the production environment each of our 28 or so Domain Controllers at remote
sites is going to be a Secondary site server. Instead of making each
computer account a Domain Admin would I be able to just use a single account
in the domain admin group to work as the "New Address to Parent Site" service
account?
Also, how are other people using domain controllers as site servers working
around this while keeping security in perspective?
-Jeff
- Next message: Jeff Singer: "RE: Network Discovery not working?"
- Previous message: Henry: "Installing clients"
- Next in thread: Kim Oppalfens: "Re: Secondary Site on a DC"
- Reply: Kim Oppalfens: "Re: Secondary Site on a DC"
- Reply: Carl Sullivan [MSFT]: "Re: Secondary Site on a DC"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
