AD 2003 Domain Controller Placement

pts.
Tags:
Active Directory
Moving from NT4 to AD2003 .. design stages. What are some rules of thumb to gague whether or not a remote location needs a controller on site? WAN design is hub-n-spoke. location populations range from 3 to 103 users. bandwidth is 56k FR up to T1's In NT4 we went with a 10 user cut-off. Under AD, I understand that can be much greater ... how much? None of the papers/write-ups I've found has any "quickie figures" Thank you DwO

Answer Wiki

Thanks. We'll let you know when a new response is added.

There are many factors that can be used in determining domain controller placement, but the most important one is from the user’s perspective…logon times. If you have a remote site, with a slow link, everything from DNS resolution to authentication & authroization traffic will be going across the pipe. An AD domain controller (for both 2000 & 2003) requires DNS to be running on the DC. Local DNS resolution on a local DC greatly reduces the amount of traffic that goes across a site link. Combined with local authentication & authorization traffic on a local DC, this makes a drastic increase of available bandwidth on the site link for the users. For a single class C subnet with <254 users, with bandwidth less than or equal to a half or full T1, I would suggest placing a local DC at the site and configure an AD file replication schedule based on the link performance.
Another factor that really is independent of bandwidth, may be just to have distributed global catalog servers in AD. Having more than one DC be a global catalog server is beneficial for disaster recovery purposes.

Discuss This Question:  

 
There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when members answer or reply to this question.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

To follow this tag...

There was an error processing your information. Please try again later.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Thanks! We'll email you when relevant content is added and updated.

Following