Hi:
We have our corporate HQ in St. Louis and our DR site in Denver. We
have a 10GB link going between the two sites for DR replication. Currently
each site has its own subnet (non-DR related work goes on in Denver) and in AD
these are two different sites and each site has their own domain controlers.
We have just finished implementing OTV so that a machine brought from St. Louis
to Denver for DR will keep its existing subnet and not realize its 700 miles
away. As I mentioned, there are domain controlers in Denver, but they're
assigned to the Denver site and subnet so that workstations and Denver specific
servers will authenticate against them. My thinking is if a machine comes over
from St. Louis for DR (right now mainly DR testing) it will come up and
authenticate against a St. Louis DC even though its in Denver. First question,
assuming St. Louis domain controlers are available, and the 10 gig link works,
should this present any problems? I'm thinking no, someone logging in
shouldn't notice a single difference but wanted to check. Second, and I think
the answer to this is no, if I wanted a domain controller in Denver, on the St.
Louis subnet but for the purpose of authenticating machines when they were
moved to Denver for DR, but only then, is that possible? In other words,
without changing a machine's subnet and site, can I get it to authenticate
against a different DC in the DR site instead of trying to contact one of its
normal DCs across the WAN?
Thanks.
Ryan
Ryan Shugart
LAN Administrator
MiTek USA, MiTek Denver
314-851-7414
MiTek Holdings, Inc., 2011-2014, All Rights Reserved
________________________________
This communication (including any attachments) contains information which is
confidential and may also be privileged. It is for the exclusive use of the
intended recipient(s). If you are not the intended recipient(s), please note
that any distribution, copying, or use of this communication or the information
in it is strictly prohibited. If you have received this communication in error,
please notify the sender immediately and then destroy any copies of it.
