Re: Active directory implementation
- From: Dharan Prakash <DharanPrakash@xxxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Mon, 26 Feb 2007 01:11:15 -0800
Thanks Irwin for the response. The articles were very informative especially
the first one.
Ideally we should have DC's in every office and configure them as sites to
batch AD replication between DCs. But my problem here is every site I'm
talking about is one of my client's retail stores. Each of this store/office
will only have 6-10 users except a few stores which will have around 100
users. These stores are spread across UK. Now putting a DC in each of these
2000 stores is something like putting extra 2000 servers. Is there any
alternative to this option? Why a central DC is not clearly an option ?
"Irwin, MCSE,MCDBA,MCT" wrote:
Hi Daran,.
the recommended way to fulfill your requirement is implementing site for
each offices. Put DC on each office. User will be authenticated by DC on
its own site rather then DC on another site. With site implemented, you can
control replication schedule, AD replication data passed among sites will be
compressed.
See these articles:
http://www.windowsnetworking.com/articles_tutorials/Active-Directory-Design-Considerations-Small-Networks.html
http://www.microsoft.com/downloads/details.aspx?FamilyId=9353A4F6-A8A8-40BB-9FA7-3A95C9540112&displaylang=en
regards,
Irwin
"Dharan Prakash" wrote:
Thanks Anthony for the response.
But how are you saying that the link will not be sufficient in this case.
All the users will be authenticating over the network. Is there any network
bandwidth related requirements for AD implementation? How do we determine the
data size which gets passed between a domain controller and a workstation
when the user logs on?
thanks in advance,
Dharan
"Anthony" wrote:
That's not going to work in any practical way. It is possible to log on over
a slow link like this, but it is extremely slow, and you could not do it for
any number of people at once.
The normal thing to do here would be to put in an ADSL connection with VPN,
and a domain controller, at each site. VPN with central Terminal Services
might be another way. It all depends on exactly what you are trying to do
though.
Anthony
www.airdesk.co.uk
"Dharan Prakash" <Dharan Prakash@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:31921A81-1E1A-43DA-BA05-E0D54B48DDB5@xxxxxxxxxxxxxxxx
My environment is I have 2000 offices across UK. All these 200 offices are
connected to a WAN(10 mbps half duplex) through a link which is 128 kbps.
We
have 25000 users logging in to our 10000 destops across our offices every
day. Can I implement active directory with a central domain controller
catering to all the offices? Please note that it is not just the Active
directory that is going to use the infrastructure. Assume that 40-60% of
the
WAN bandwidth is being already used by other applications in the
environment.
Can we still have the Active directory setup?
- References:
- Re: Active directory implementation
- From: Anthony
- Re: Active directory implementation
- From: Irwin, MCSE,MCDBA,MCT
- Re: Active directory implementation
- Prev by Date: Re: LDAP/AD Problems Related to WAN?
- Next by Date: Re: Trust relationship between this workstation and the primary do
- Previous by thread: Re: Active directory implementation
- Next by thread: Re: RSOP shows "Full Control - Everyone" for file/folder permissions
- Index(es):
Relevant Pages
|
Loading
