Announcement

Collapse
No announcement yet.

Windows 2003 Domain between 2 sites

Collapse
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • Windows 2003 Domain between 2 sites

    I have 2 sites.

    SiteA has has a DC with all 5 FSMO roles.

    SiteB has a DC, which connects to SiteA via a VPN WAN link.

    Let's say SiteA had a fire and went offline permanantly...

    So SiteB I need to Sieze the 5 FSMO roles?

    The problem is that how can I log onto siteB across the WAN if I can't log on the domain because it won't allow me because the link cannot be made to the Main domain controller holding the FSMO roles in siteA?

  • #2
    Re: Windows 2003 Domain between 2 sites

    Originally posted by tekuser777 View Post
    I have 2 sites.

    SiteA has has a DC with all 5 FSMO roles.

    SiteB has a DC, which connects to SiteA via a VPN WAN link.

    Let's say SiteA had a fire and went offline permanantly...

    So SiteB I need to Sieze the 5 FSMO roles?

    The problem is that how can I log onto siteB across the WAN if I can't log on the domain because it won't allow me because the link cannot be made to the Main domain controller holding the FSMO roles in siteA?
    You don't need any of the FSMO roles to log in.

    Comment


    • #3
      Re: Windows 2003 Domain between 2 sites

      Originally posted by tekuser777 View Post
      I have 2 sites.

      SiteA has has a DC with all 5 FSMO roles.

      SiteB has a DC, which connects to SiteA via a VPN WAN link.

      Let's say SiteA had a fire and went offline permanantly...

      So SiteB I need to Sieze the 5 FSMO roles?

      The problem is that how can I log onto siteB across the WAN if I can't log on the domain because it won't allow me because the link cannot be made to the Main domain controller holding the FSMO roles in siteA?
      You don't actually need to "access" any damaged roleholder DC.
      When you seize a role the best candidate would be a DC on the same site as the roleholder because the intrasite replication occurrs more frequently.
      But let's say in your case the whole site goes up in flames, you'd seize the roles from any available DC.
      When you seize a role you just transfer the FSMO-Role-Owner attribute. All these are stored on the AD database which is replicated to all the DCs.

      Cheers
      Caesar's cipher - 3

      ZKHQ BRX HYHQWXDOOB GHFLSKHU WKLV BRX ZLOO UHDOLVH LW ZDV D ZDVWH RI WLPH!

      SFX JNRS FC U6 MNGR

      Comment

      Working...
      X