Forum Search:
Forum.Brain-Cluster.com: Brain Cluster Technical Forum
Ultimate forum for Technical Discussions

Home » Microsoft » Windows Server » Active Directory » Server needs to logon to preferred DC
Server needs to logon to preferred DC [message #156499] Thu, 18 June 2009 08:20 Go to next message
Amarnath  is currently offline Amarnath
Messages: 21
Registered: July 2009
Junior Member
Hi,

is it possible to a Server to logon to preferred Domain controller.

Server is a (terminal server).

Whenever users login to terminal servers, users should authenticate to a
specific Domain controller, Is there any registy settings.

Help is greatly appreciated.
Re: Server needs to logon to preferred DC [message #156503 is a reply to message #156499] Thu, 18 June 2009 08:57 Go to previous messageGo to next message
Marcin  is currently offline Marcin  United States
Messages: 273
Registered: July 2009
Senior Member
One possible approach would be to place terminal server and domain
controller on designated subnets and made these subnets part of a new AD
site...

hth
Marcin

"Amarnath" <Amarnath@discussions.microsoft.com> wrote in message
news:572FC423-D4B5-414C-83BA-ACED38F6DF30@microsoft.com...
> Hi,
>
> is it possible to a Server to logon to preferred Domain controller.
>
> Server is a (terminal server).
>
> Whenever users login to terminal servers, users should authenticate to a
> specific Domain controller, Is there any registy settings.
>
> Help is greatly appreciated.
Re: Server needs to logon to preferred DC [message #156505 is a reply to message #156499] Thu, 18 June 2009 08:25 Go to previous messageGo to next message
meiweb(nospam)  is currently offline meiweb(nospam)  Germany
Messages: 1307
Registered: July 2009
Senior Member
Hello Amarnath,

See here about the DCLocator process:
http://blogs.dirteam.com/blogs/jorge/search.aspx?q=locator&a mp;p=1

And what you can do to have a bit control:
http://technet.microsoft.com/en-us/library/cc778225(WS.10).aspx

http://technet.microsoft.com/en-us/library/cc781155(WS.10).aspx

But why will you do it?

Best regards

Meinolf Weber
Disclaimer: This posting is provided "AS IS" with no warranties, and confers
no rights.
** Please do NOT email, only reply to Newsgroups
** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm


> Hi,
>
> is it possible to a Server to logon to preferred Domain controller.
>
> Server is a (terminal server).
>
> Whenever users login to terminal servers, users should authenticate to
> a specific Domain controller, Is there any registy settings.
>
> Help is greatly appreciated.
>
Re: Server needs to logon to preferred DC [message #156537 is a reply to message #156499] Thu, 18 June 2009 22:10 Go to previous messageGo to next message
aceman  is currently offline aceman  United States
Messages: 5816
Registered: July 2009
Senior Member
"Amarnath" <Amarnath@discussions.microsoft.com> wrote in message
news:572FC423-D4B5-414C-83BA-ACED38F6DF30@microsoft.com...
> Hi,
>
> is it possible to a Server to logon to preferred Domain controller.
>
> Server is a (terminal server).
>
> Whenever users login to terminal servers, users should authenticate to a
> specific Domain controller, Is there any registy settings.
>
> Help is greatly appreciated.


AD Sites, as Marcin mentioned, would be your best friend with this task. AD
Sites control logon processes. If there is only one DC/GC in the site that
the terminal server is in, there is nothing else you need to do. It will use
it first before any others. If there are more than one in a Site, then you
have to play with the weights and priorities of the DC's SRV records in it's
Netlogon registry settings, so it will be the one to respond first, however
this affects all machines in the site. So if for example, you put the
terminal server in it's own VLAN and put a DC in that VLAN, and create a
site specifically for that VLAN subnet, problem solved.

So it really depends on how your network is currently setup in order to
tackle this problem for an effective resolution. Maybe some additgonal
information on your part will help to understand what you have (sites, # of
DCs in each site, the site the terminal server is in, etc) and why you want
it to go to one DC, etc.

--
Ace

This posting is provided "AS-IS" with no warranties or guarantees and
confers no rights.

Ace Fekay, MCSE 2003 & 2000, MCSA 2003 & 2000, MCSA Messaging, MCT
Microsoft Certified Trainer
aceman@mvps.RemoveThisPart.org

For urgent issues, you may want to contact Microsoft PSS directly. Please
check http://support.microsoft.com for regional support phone numbers.

"Efficiency is doing things right; effectiveness is doing the right
things." - Peter F. Drucker
http://twitter.com/acefekay
Re: Server needs to logon to preferred DC [message #156548 is a reply to message #156537] Fri, 19 June 2009 05:12 Go to previous messageGo to next message
Amarnath  is currently offline Amarnath
Messages: 21
Registered: July 2009
Junior Member
we have 8 sites and 24 DC's. (all Dc's are with AD and DNS integarated.)



"Ace Fekay [Microsoft Certified Trainer]" wrote:

> "Amarnath" <Amarnath@discussions.microsoft.com> wrote in message
> news:572FC423-D4B5-414C-83BA-ACED38F6DF30@microsoft.com...
> > Hi,
> >
> > is it possible to a Server to logon to preferred Domain controller.
> >
> > Server is a (terminal server).
> >
> > Whenever users login to terminal servers, users should authenticate to a
> > specific Domain controller, Is there any registy settings.
> >
> > Help is greatly appreciated.
>
>
> AD Sites, as Marcin mentioned, would be your best friend with this task. AD
> Sites control logon processes. If there is only one DC/GC in the site that
> the terminal server is in, there is nothing else you need to do. It will use
> it first before any others. If there are more than one in a Site, then you
> have to play with the weights and priorities of the DC's SRV records in it's
> Netlogon registry settings, so it will be the one to respond first, however
> this affects all machines in the site. So if for example, you put the
> terminal server in it's own VLAN and put a DC in that VLAN, and create a
> site specifically for that VLAN subnet, problem solved.
>
> So it really depends on how your network is currently setup in order to
> tackle this problem for an effective resolution. Maybe some additgonal
> information on your part will help to understand what you have (sites, # of
> DCs in each site, the site the terminal server is in, etc) and why you want
> it to go to one DC, etc.
>
> --
> Ace
>
> This posting is provided "AS-IS" with no warranties or guarantees and
> confers no rights.
>
> Ace Fekay, MCSE 2003 & 2000, MCSA 2003 & 2000, MCSA Messaging, MCT
> Microsoft Certified Trainer
> aceman@mvps.RemoveThisPart.org
>
> For urgent issues, you may want to contact Microsoft PSS directly. Please
> check http://support.microsoft.com for regional support phone numbers.
>
> "Efficiency is doing things right; effectiveness is doing the right
> things." - Peter F. Drucker
> http://twitter.com/acefekay
>
>
Re: Server needs to logon to preferred DC [message #156549 is a reply to message #156505] Fri, 19 June 2009 05:10 Go to previous messageGo to next message
Amarnath  is currently offline Amarnath
Messages: 21
Registered: July 2009
Junior Member
Hi,

Thanks for your quick response, I will go through the links and get back to
you.

"Meinolf Weber [MVP-DS]" wrote:

> Hello Amarnath,
>
> See here about the DCLocator process:
> http://blogs.dirteam.com/blogs/jorge/search.aspx?q=locator&a mp;p=1
>
> And what you can do to have a bit control:
> http://technet.microsoft.com/en-us/library/cc778225(WS.10).aspx
>
> http://technet.microsoft.com/en-us/library/cc781155(WS.10).aspx
>
> But why will you do it?
>
> Best regards
>
> Meinolf Weber
> Disclaimer: This posting is provided "AS IS" with no warranties, and confers
> no rights.
> ** Please do NOT email, only reply to Newsgroups
> ** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm
>
>
> > Hi,
> >
> > is it possible to a Server to logon to preferred Domain controller.
> >
> > Server is a (terminal server).
> >
> > Whenever users login to terminal servers, users should authenticate to
> > a specific Domain controller, Is there any registy settings.
> >
> > Help is greatly appreciated.
> >
>
>
>
Re: Server needs to logon to preferred DC [message #156560 is a reply to message #156548] Fri, 19 June 2009 09:35 Go to previous messageGo to next message
aceman  is currently offline aceman  United States
Messages: 5816
Registered: July 2009
Senior Member
"Amarnath" <Amarnath@discussions.microsoft.com> wrote in message
news:65F0F7F1-5008-4F6E-8EE4-65C02DE54FBA@microsoft.com...
> we have 8 sites and 24 DC's. (all Dc's are with AD and DNS integarated.)

May I assume 3 DCs per site?

Ace
Re: Server needs to logon to preferred DC [message #156565 is a reply to message #156560] Fri, 19 June 2009 11:19 Go to previous messageGo to next message
Amarnath  is currently offline Amarnath
Messages: 21
Registered: July 2009
Junior Member
is there any command to take output from repadmin (for dc,gc and site list)

"Ace Fekay [Microsoft Certified Trainer]" wrote:

> "Amarnath" <Amarnath@discussions.microsoft.com> wrote in message
> news:A247C5B1-29C0-4107-A8F7-4421A7ED80E1@microsoft.com...
> > yes you can assume 3 or 4 dcs in site
> >
>
> My assumption was 24 DCs divided by 8 sites. I guess my assumption was
> incorrect. So you may have a site with one DC. It would be helpful if you
> are specific to better help.
>
> If the term server is in a site with one DC, then it will be the only one
> that it will contact, that is if your AD sites are correctly setup.
> Otherwise, as already stated, you would have to play with the weights and
> priorities on the DCs in that site, but it is a general broad sword setting
> that will affect all machines in the site, hence the reason to create a
> separate VLAN only for the term server and a DC with a separate site for the
> VLAN.
>
> Does that make sense and the reasons behind it?
>
> Ace
>
>
>
>
>
Re: Server needs to logon to preferred DC [message #156566 is a reply to message #156560] Fri, 19 June 2009 11:03 Go to previous messageGo to next message
aceman  is currently offline aceman  United States
Messages: 5816
Registered: July 2009
Senior Member
"Amarnath" <Amarnath@discussions.microsoft.com> wrote in message
news:A247C5B1-29C0-4107-A8F7-4421A7ED80E1@microsoft.com...
> yes you can assume 3 or 4 dcs in site
>

My assumption was 24 DCs divided by 8 sites. I guess my assumption was
incorrect. So you may have a site with one DC. It would be helpful if you
are specific to better help.

If the term server is in a site with one DC, then it will be the only one
that it will contact, that is if your AD sites are correctly setup.
Otherwise, as already stated, you would have to play with the weights and
priorities on the DCs in that site, but it is a general broad sword setting
that will affect all machines in the site, hence the reason to create a
separate VLAN only for the term server and a DC with a separate site for the
VLAN.

Does that make sense and the reasons behind it?

Ace
Re: Server needs to logon to preferred DC [message #156567 is a reply to message #156560] Fri, 19 June 2009 10:46 Go to previous messageGo to next message
Amarnath  is currently offline Amarnath
Messages: 21
Registered: July 2009
Junior Member
yes you can assume 3 or 4 dcs in site

"Ace Fekay [Microsoft Certified Trainer]" wrote:

> "Amarnath" <Amarnath@discussions.microsoft.com> wrote in message
> news:65F0F7F1-5008-4F6E-8EE4-65C02DE54FBA@microsoft.com...
> > we have 8 sites and 24 DC's. (all Dc's are with AD and DNS integarated.)
>
> May I assume 3 DCs per site?
>
> Ace
>
>
>
>
Re: Server needs to logon to preferred DC [message #156569 is a reply to message #156565] Fri, 19 June 2009 12:30 Go to previous messageGo to next message
aceman  is currently offline aceman  United States
Messages: 5816
Registered: July 2009
Senior Member
"Amarnath" <Amarnath@discussions.microsoft.com> wrote in message
news:0555E8AC-EA15-4056-809E-8B3371B06696@microsoft.com...
> is there any command to take output from repadmin (for dc,gc and site
> list)

I think at this time, we are concerned with your terminal server and which
DC it uses, correct?

In which site is the terminal server in?
How many DCs are in this site?

Ace
Re: Server needs to logon to preferred DC [message #156573 is a reply to message #156565] Fri, 19 June 2009 13:34 Go to previous message
aceman  is currently offline aceman  United States
Messages: 5816
Registered: July 2009
Senior Member
"Amarnath" <Amarnath@discussions.microsoft.com> wrote in message
news:0555E8AC-EA15-4056-809E-8B3371B06696@microsoft.com...
> is there any command to take output from repadmin (for dc,gc and site
> list)

I'm sorry, meant to answer your question, too. The best way to list all
sites and dcs in a site, is to script a query. Look at these links for that
info:

Hey, Scripting Guy! How Can I List All the Sites in Active ...How can I list
all the sites in Active Directory as well as all the servers in those
sites? -- DW. Spacer Hey, Scripting Guy! Answer Script Center. Hey, DW. ...
www.microsoft.com/technet/scriptcenter/.../hey1107.mspx

Active Directory Sites and Subnets ScriptsList All Domain Controllers List
Active Directory Sites ... List the Subnets in all Active Directory Sites
List the Site Name for a Domain Controller ...
www.activexperts.com/activmonitor/.../activedirectory/sites/

I was more concerned about your terminal server and what site it is in, and
how many DCs in that site.

Ace
Previous Topic:Restricted Groups Propagating to Most but not All Users...
Next Topic:Lsass.exe is the "heart" process of the Active Directory engine?
Goto Forum:
  


Current Time: Wed Oct 18 01:46:38 EDT 2017

Total time taken to generate the page: 0.04129 seconds
.:: Contact :: Home ::Sitemap::.

Powered by: FUDforum 3.0.0RC2.
Copyright ©2001-2009 FUDforum Bulletin Board Software