Re: Which Domain Controller is doing the authenticating?

Tech-Archive recommends: Repair Windows Errors & Optimize Windows Performance

Closest would mean in the same subnet. You can have e.g. different locations
(even flours) in different subnet.

Yes, DC that is 100 yards away might be at times better authentication
server then the one 10 feet away. When? When that server 10 feet away is
overloaded with other requests and would take it 30 seconds to process
client's response while server 100 yards away will do it in only 5...

--
Mike
Microsoft MVP - Windows Security

"vidro" <vidro@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:56C4FAB2-5739-4E9C-AE68-ED219C64488D@xxxxxxxxxxxxxxxx
> So if you have 2 or 3 DC's on the same subnet the distinguishing factor
> for
> a preferred authentication server would be what?
> If the answer for the previous question is "The closest" what would be the
> discerning value for "closest" ?
> I guess I'm asking if physically a DC is 10 feet from a client is it
> possible that a DC 100yrds away could be doing the authentication for that
> client?
>
>
>
> "Miha Pihler [MVP]" wrote:
>
>> Hi,
>>
>> You can run following command on your server...
>>
>> echo %logonserver%
>>
>> and it will tell you which server authenticated you.
>>
>> If computers are in different subnets - you could implement Sites and
>> force
>> clients to try and connect to nearest DC first (nearest DC would be one
>> in
>> same subnet (Site)).
>>
>> --
>> Mike
>> Microsoft MVP - Windows Security
>>
>> "vidro" <vidro@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
>> news:07CF12D1-7224-4426-8B89-3FB89B81B009@xxxxxxxxxxxxxxxx
>> > Enviroment = Windows 2003 Active Directory
>> >
>> > Having multiple, DC's how can I find out which DC authenticated
>> > certain
>> > clients?
>> > How can I configure clients to be authenticated by specific DC's?
>>
>>
>>


.

Relevant Pages

  • Re: windows 2003 active directory and slow logons
    ... so WHY not create a subnet in AD that covers that. ... # Jorge de Almeida Pinto # MVP Windows Server - Directory Services ... DHCP provided by linux box and clients get ip addresses from the ... The remote site has a local DC that is also a DNS for the AD DNS ...
    (microsoft.public.windows.server.active_directory)
  • Re: windows 2003 active directory and slow logons
    ... so WHY not create a subnet in AD that covers that. ... # Jorge de Almeida Pinto # MVP Windows Server - Directory Services ... DHCP provided by linux box and clients get ip addresses from the ... The remote site has a local DC that is also a DNS for the AD DNS ...
    (microsoft.public.windows.server.active_directory)
  • RE: 802.1x Authentication Fails
    ... Reason = The authentication request was not processed because the ... a default certificate is being sent to ... I queried the product team about this and they feel the server certificate ... which is causing the problem that the clients cannot ...
    (microsoft.public.internet.radius)
  • Netlogon 5783
    ... For about there mounts I<m having small network problem, with clients, that ... The session setup to the Windows NT or Windows 2000 Domain Controller ... On DC1r there is Exchange 2000 server, witch is Exchange system manager is ... The failure code from authentication protocol Kerberos ...
    (microsoft.public.win2000.networking)
  • Re: windows 2003 active directory and slow logons
    ... and what is the subnet mask for clients and servers? ... # Jorge de Almeida Pinto # MVP Windows Server - Directory Services ... DHCP provided by linux box and clients get ip addresses from the following ... The ip address range for the server is 10.30.254.x ...
    (microsoft.public.windows.server.active_directory)