Re: 2003 AD Best Practice questions


Ace Fekay [MVP] wrote:
> In news:1125275260.951595.42060@xxxxxxxxxxxxxxxxxxxxxxxxxxxx,
> TAS <troyweb@xxxxxxxxxxxxxxxxx> made this post, which I then commented about
> below:
> > Here are two sections from a 2000 AD best practice article. Does
> > anyone
> > know if they still apply to 2003 AD?
> >
> > from
> > http://www.microsoft.com/technet/prodtechnol/windows2000serv/technologies/activedirectory/plan/bpaddsgn.mspx#EFAA
> >
> > ---------------------------------------------------------------------
> > "Make sure no single site is directly connected to more than 20 other
> > sites.
> >
> > This condition can occur in large hub-and-spoke deployments where most
> > sites are branch sites that communicate with a centralized hub site.
> > If this condition exists and there are more than 20 site links from
> > the hub
> > site to branch sites, the hub site can be divided into multiple sites
> > to
> > provide additional bridgehead servers to handle the replication
> > volume. In a site, a single bridgehead server is active per domain.
> > If the site has more than 20 site links, the bridgehead servers can
> > become overloaded."
> >
> > --------------------------------------------------------------------
> > "Placing Global Catalog Servers
> >
> > A global catalog server is required for logon to native-mode Active
> > Directory domains. To eliminate the need to contact a global catalog
> > server in a distant site for logons and for forest-wide searches,
> > designate at least one domain controller per site as a global catalog.
> >
> > Best practice design dictates that half of all domain controllers in
> > the
> > site be global catalogs, with at least two global catalogs if your
> > site has multiple domain controllers. If you use the single, global
> > domain model, plan for all domain controllers for the global domain
> > to also be global catalog servers. Because the forest root domain is
> > very small, making all domain controllers global catalogs requires
> > very little additional resources."
> >
> > (I just need confirmation that I understand this. In a single domain
> > one root AD structure ALL domain controllers should be GC's?)
> >
> > ------------------------------------------------------------------------
> >
> >
> > Thanks,
> >
> > Troy
>
> They don't have to be all GCs, but can be if you want them to be. If you are
> using Exchange, you can specify one of the DC/GCs for it to use exclusively
> by selecting the GC in the ESM under the server's properties, then bumping
> down the priority number in the DNS SRV record for that specific GC so the
> clients don't use it.
>
> The more GCs you have, and the more Sites you have, keep in mind it will
> increase replication traffic. Do you have more than 20 sites interconnected?
>
> For the most part, 2000 and 2003 are very similar, if not the same in many
> aspects, and the best practices still apply.
>
> --
> Regards,
> Ace
>
> Please direct all replies ONLY to the Microsoft public newsgroups
> so all can benefit.
>
> This posting is provided "AS-IS" with no warranties or guarantees
> and confers no rights.
>
> Ace Fekay, MCSE 2003 & 2000, MCSA 2003 & 2000, MCSE+I, MCT, MVP
> Microsoft Windows MVP - Windows Server - Directory Services
> Infinite Diversities in Infinite Combinations.
> =================================

Ace,

The main site right now has 21 site links. From the best practices it
seems to say that we should split the main site into two (even when
they in the same physical location). And have main siteA with 11 site
links and main siteB with 10 site links to balance the replication
load. Am I understanding the recomendation properly?

Thanks,

Troy

.

Relevant Pages

  • Re: 2003 AD Best Practice questions
    ... > Here are two sections from a 2000 AD best practice article. ... > A global catalog server is required for logon to native-mode Active ... > site has multiple domain controllers. ... > to also be global catalog servers. ...
    (microsoft.public.windows.server.active_directory)
  • 2003 AD Best Practice questions
    ... Here are two sections from a 2000 AD best practice article. ... "Placing Global Catalog Servers ... A global catalog server is required for logon to native-mode Active ... has multiple domain controllers. ...
    (microsoft.public.windows.server.active_directory)
  • Re: Unable to log in when primary dc is down
    ... act as "virtual global catalog servers" in that they can all respond to any ... global catalog server, as they do when there are multiple domains and a user ... So, in a single-domain forest, all domain controllers can service all logon ...
    (microsoft.public.windows.server.active_directory)
  • Re: Exchange and GC
    ... Global catalog servers Exchange Server 2003 must access global ... then DSAccess uses a maximum of 200 ... Domain controllers Domain controllers are used for user-context ...
    (microsoft.public.exchange.admin)
  • RE: Provide feedback to DC promotion/replacement
    ... You should have these two domain controllers for redundancy, ... A global catalog server is a domain controller that, ... If the server holding ... the infrastructure master is also a global catalog it won't ever see any ...
    (microsoft.public.windows.server.active_directory)