Re: Simple little VMWare domain: a little help please...

Tech-Archive recommends: Fix windows errors by optimizing your registry

Inline

--
Paul Bergson
MVP - Directory Services
MCT, MCSE, MCSA, Security+, BS CSci
2003, 2000 (Early Achiever), NT

http://www.pbbergs.com

Please no e-mails, any questions should be posted in the NewsGroup
This posting is provided "AS IS" with no warranties, and confers no rights.

"Steve" <steverino.smith@xxxxxxxxx> wrote in message
news:1170717701.750909.58260@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
Why not your laptop running a dc and your VMWare image running a dc. I
see
know reason for any other, but do as you please just remember the more
dc's
you add the more complexities it creates.

OK. This is good information. I'll do both -- use my working laptop
as just a member server w/cached credentials and my laptop w/broken
display (works fine via RDP) as a 2nd DC. I'll screw something up at
some point, but annoying people like you w/stupid questions is so much
more convenient for me that, say, formal training. lol

1) Is there a limit on how long cached credentials can be used before
they expire?

I am not aware of one


2) On the working laptop that will host the VMWare DC and use cached
credentials to boot as member server, I assume I need to add DNS
server and make 127.0.0.1 the primary DNS so that the logon doesn't
take 5 minutes to time out b/c the DNS server on DC isn't around until
VMWare is booted?

Yes


DNS is one area that just skipped over b/c it was already configured
and working in the VMWare image and I figured out right away that
making it AD-integrated would take care of configuring it on any other
DC's. However, it seems that only happens on DC's. But I notice that
this isn't occurring automatically for just a member server in the
domain running DNS server. The VMWare DNS server is configured to
replicate to all DNS servers in domain (not just DC's). Do I need to
create empty forward zones for it to populate from AD?

The tem active directory integrated means that the dns is integrated
(embedded in the metadata) so if you want dns to work on a machine besides a
dc then you will need to use a secondary zone.





.

Relevant Pages

  • Re: Replication issues
    ... I wanted to say Zone Transfers not Zone Forwarding. ... AD-Integrated DNS does not do zone transfers between the ... your DNS server will bypass ...
    (microsoft.public.windows.server.active_directory)
  • Re: Servers hang on boot
    ... The last DC at that site (not a DNS server). ... EventID: 0x00000457 ... (Event String could not be retrieved) ...
    (microsoft.public.windows.server.networking)
  • Re: DNS Redesign Issue
    ... set the new child domain DNS server as primary for the domain controllers? ... -If you are going to create a new AD Integrated Zone in each child domain, ...
    (microsoft.public.windows.server.dns)
  • Re: Internet connection wizard
    ... turn on DHCP on the workstation. ... Connection-specific DNS Suffix. ... calling CNetCommit::ValidateRouterConnectionProperties. ... Call to Reading preferred DNS server IP returned ok. ...
    (microsoft.public.windows.server.sbs)
  • Re: RPC Endpoint Mapper Error
    ... Event Type: Warning ... I checked DNS entries with articles from Microsoft on ... PASS - All the DNS entries for DC are registered on DNS server ... List of NetBt transports currently bound to the Redir ...
    (microsoft.public.win2000.active_directory)