Re: I have site-subnets set, but sometimes it gets DC from other sites. Why ?

From: Cary Shultz [A.D. MVP] (cwshultz_at_mvps.org)
Date: 08/28/04 

Date: Sat, 28 Aug 2004 12:33:23 -0400

Marlon,

This is a somewhat common question. But a really good one!

Here are some basic questions that I am sure that you have already checked
but let's just make sure:

1) have you set up the four Sites in Active Directory Sites and Services?
2) have you created the appropriate subnet for each of the Sites and then
associated the correct subnet with the correct Site?
3) does each of the Domain Controllers have the correct IP Address (
assuming that each has a static IP Address )?

I would do a test with some clients in each of the Sites. Simply enter - at
a command prompt - set l. That is the lowercase letter 'L'. This will show
you against what Domain Controller the clients are authenticating. You
should see that all clients in Site4 are authenticating against the DC in
Site4 and that the clients in Site2 are authenticating against the DC in
Site2.

If this is not the case then you might want to look at 'generic' SRV
records. Please take a look at the following MSKB Article:

http://support.microsoft.com/?id=306602

Also, is DNS in order?

HTH,

Cary

"Marlon Brown" <marlon_brown@hotmail.com> wrote in message
news:u7O4uXEjEHA.3896@TK2MSFTNGP15.phx.gbl...
> Interesting. I have total of 4 sites.
> My DC IP=19.19.19.2 (subnet 19.19.19.0/24) appears on AD Sites & Services
as
> set to authenticate on Site1.
>
> However, sometimes I launch "AD Users & Computers" and servers from other
> sites appears listed on the top of AD Users & computers. Why ? I confirmed
> that all DC's on Site1 is up and if I switch do "Domain
Controller->Site1",
> that works. Later it may get DC's from other sites again...
>
> I am wondering what's going on. Win2K SP4.
>
>
>

Relevant Pages

  • Re: New post: Integrated Windows Authentication for remote users
    ... Integrated (which includes Negioate and NTLM) is not supported outside the ... that all clients authenticating have trusted connections to the Key ... > All clients connect and authenticate using MSIE using W2k or better. ... >>> to the main web server just fine- they only get this error when they ...
    (microsoft.public.inetserver.iis.security)
  • Re: SSO
    ... solutions currently available can handle authenticating POST ... SPNEGO is great in an all Windows environment, ... Getting your users used to entering login details every time they ... need to know how to talk to your Web SSO system), and clients (which ...
    (comp.protocols.kerberos)
  • Re: Chanigin IPs on DCs
    ... If your dc is hosting dns make sure that all of your clients are updated ... dc (Like authenticating). ... I've come into an organization where their DCs are not part ... of the internal network but have public facing IPs instead. ...
    (microsoft.public.windows.server.active_directory)
  • Re: Logon Scripts problem when it authenticate with bdc in 2000 mixed mode env
    ... I should have included this question as well: are all of your clients ... pointing to your Internal DNS Server? ... > all which is authenticating from any bdc they r not ... > bdc .But when i remove the cables of bdc same problem ...
    (microsoft.public.win2000.active_directory)
Quantcast