subject:"\[ActiveDir\] domain naming"

RE: [ActiveDir] domain naming

2005-03-21 Thread Williamson, Bob

Title: domain naming



For what it is worth, I went through a domain rename 
process on W2K3 AD, Exchange 2003 SP1, two SQL servers, One ISA 2004 box, 
two Sharepoint 2001 servers, two subnets etc...
AND
Everything went pretty darned well.  There were a 
number of issues that had to be picked up afterward, but zero downtime for my 
users.
 
I have to agree, however, it scared me BIG 
time.
 
Bob WilliamsonMCSEEisenhower & Carlson, 
PLLC[EMAIL PROTECTED]
 


From: [EMAIL PROTECTED] 
[mailto:[EMAIL PROTECTED] On Behalf Of Jorge de Almeida 
PintoSent: Monday, March 21, 2005 4:45 PMTo: 
ActiveDir@mail.activedir.orgSubject: RE: [ActiveDir] domain 
naming

Brian,
What do you mean with "but I want to say you can edit the netbios 
name during the upgrade"? Are you saying it is possible to change the 
NetBIOS name of the domain when doing an in-place upgrade from NT4-> W2K3? 
Have I missed something?
 
 
Cathy,
To my understanding when doing 
an in-place upgrade from NT4-> W2K3 it is not possible to change the NetBIOS 
name of a WIndows domain. It is, however possible during the upgrade to choose a 
DNS name for the upgraded domain that differs from the NetBIOS name. So if the 
NetBIOS name of the NT4 domain is LEGACYDOMAIN then the NetBIOS name of the W2K3 
domain will also be LEGACYDOMAIN when doing an in-place upgrade. So if the DNS 
name of your parent domain is PARENT.COM normally yoy would assign 
LEGACYDOMAIN.PARENT.COM as the DNS name of the upgraded domain. If the name 
LEGACYDOMAIN changed to FUTUREDOMAIN you can assign FUTUREDOMAIN.PARENT.COM as 
the DNS name of the upgraded domain. I would not prefer it though, but (as 
I know of) there are no technical issues when the most left level of the DNS 
name differs from the NetBIOS name. If your users logon using the old style they 
will see LEGACYDOMAIN in the domain box. If they logon using an UPN they will 
need to logon using [EMAIL PROTECTED] or 
[EMAIL PROTECTED] depending on which one 
you explicitely assign. For administrators it might also be confusing because 
when using service accounts. There will be situations when you'll use 
LEGACYDOMAIN\USER instead of the UPN.
If possible in your situation I 
would prefer to install a new child domain in the forest with a NetBIOS name of 
FUTUREDOMAIN and a DNS name of FUTUREDOMAIN.PARENT.COM and after that migrate 
the LEGACYDOMAIN users and resources to the new AD child 
domain.
Maybe it isn't of any trouble at 
this moment having a difference between the NetBIOS and the DNS name, is that 
still valed for the future? (can't find any reason right now, just wanted to 
make sure you don't miss this one)
You yourself said it... the name 
has changed and it was an ugly proces. Do you still want to have the old name 
around?
 
A domain rename in W2K3, 
independent of what domain you rename, affects your whole forest and only the 
though of it makes me shiver!
Another possibility is to rename 
the NT4 domain before upgrading. Although also not a very pretty proces and it 
wouldn't be my first choice because depending on the size of the domain and 
the systems installed in it this also makes me shiver. (although less painfull 
the a forest rename)
 
Hope this helps 
you!
Cheers,
Jorge
 
NOTES: * This posting is provided "AS IS" with no warranties and 
with no rights! * Allways test before 
implementing! __ 


From: Brian Desmond 
[mailto:[EMAIL PROTECTED] Sent: Wednesday, March 16, 
2005 00:51To: ActiveDir@mail.activedir.orgSubject: RE: 
[ActiveDir] domain naming


I don't think your 
users will have much confusion over the matter. Just have them use upn to login 
when a domain is required. It's bene a logn time since I did an NT4 -> AD 
inplace upgrade, but I want to say you can edit the netbios name during the 
upgrade. 
 

--Brian 
Desmond[EMAIL PROTECTED]Payton on the web! 
www.wpcp.org v - 773.534.0034 x135f - 
773.534.8101
c - 
312.731.3132


From: [EMAIL PROTECTED] on 
behalf of O'Brien, CathySent: Tue 3/15/2005 5:12 PMTo: 
'ActiveDir@mail.activedir.org'Subject: [ActiveDir] domain 
naming

Our organization is planning an in-place upgrade from 
NT4 to W2K3. Our current NT domain name is no longer applicable (due to a 
corporate name change), unwieldy, and just plain ugly, and so we'd like to 
select a different name during the upgrade realizing of course that our NetBIOS 
name would remain the same.
We know that a domain rename is now a possibility, 
but from the stories we've heard we're not in a rush to go that route. We're 
just wondering how much confusion may be caused for users by having our NetBIOS 
and our domain DNS name not match. Off the tops of our heads it seems like not 
much of an issue, particularly since although we'll be a child domain we're 
planning to use just the forest root suffix for our UPNs. Our c

RE: [ActiveDir] domain naming

2005-03-21 Thread Jorge de Almeida Pinto

Title: domain naming



Brian,
What do you mean with "but I want to say you can edit the netbios 
name during the upgrade"? Are you saying it is possible to change the 
NetBIOS name of the domain when doing an in-place upgrade from NT4-> W2K3? 
Have I missed something?
 
 
Cathy,
To my understanding when doing 
an in-place upgrade from NT4-> W2K3 it is not possible to change the NetBIOS 
name of a WIndows domain. It is, however possible during the upgrade to choose a 
DNS name for the upgraded domain that differs from the NetBIOS name. So if the 
NetBIOS name of the NT4 domain is LEGACYDOMAIN then the NetBIOS name of the W2K3 
domain will also be LEGACYDOMAIN when doing an in-place upgrade. So if the DNS 
name of your parent domain is PARENT.COM normally yoy would assign 
LEGACYDOMAIN.PARENT.COM as the DNS name of the upgraded domain. If the name 
LEGACYDOMAIN changed to FUTUREDOMAIN you can assign FUTUREDOMAIN.PARENT.COM as 
the DNS name of the upgraded domain. I would not prefer it though, but (as 
I know of) there are no technical issues when the most left level of the DNS 
name differs from the NetBIOS name. If your users logon using the old style they 
will see LEGACYDOMAIN in the domain box. If they logon using an UPN they will 
need to logon using [EMAIL PROTECTED] or 
[EMAIL PROTECTED] depending on which one 
you explicitely assign. For administrators it might also be confusing because 
when using service accounts. There will be situations when you'll use 
LEGACYDOMAIN\USER instead of the UPN.
If possible in your situation I 
would prefer to install a new child domain in the forest with a NetBIOS name of 
FUTUREDOMAIN and a DNS name of FUTUREDOMAIN.PARENT.COM and after that migrate 
the LEGACYDOMAIN users and resources to the new AD child 
domain.
Maybe it isn't of any trouble at 
this moment having a difference between the NetBIOS and the DNS name, is that 
still valed for the future? (can't find any reason right now, just wanted to 
make sure you don't miss this one)
You yourself said it... the name 
has changed and it was an ugly proces. Do you still want to have the old name 
around?
 
A domain rename in W2K3, 
independent of what domain you rename, affects your whole forest and only the 
though of it makes me shiver!
Another possibility is to rename 
the NT4 domain before upgrading. Although also not a very pretty proces and it 
wouldn't be my first choice because depending on the size of the domain and 
the systems installed in it this also makes me shiver. (although less painfull 
the a forest rename)
 
Hope this helps 
you!
Cheers,
Jorge
 
NOTES: * This posting is provided "AS IS" with no warranties and 
with no rights! * Allways test before 
implementing! __ 


From: Brian Desmond 
[mailto:[EMAIL PROTECTED] Sent: Wednesday, March 16, 
2005 00:51To: ActiveDir@mail.activedir.orgSubject: RE: 
[ActiveDir] domain naming


I don't think your 
users will have much confusion over the matter. Just have them use upn to login 
when a domain is required. It's bene a logn time since I did an NT4 -> AD 
inplace upgrade, but I want to say you can edit the netbios name during the 
upgrade. 
 

--Brian 
Desmond[EMAIL PROTECTED]Payton on the web! 
www.wpcp.org v - 773.534.0034 x135f - 
773.534.8101
c - 
312.731.3132


From: [EMAIL PROTECTED] on 
behalf of O'Brien, CathySent: Tue 3/15/2005 5:12 PMTo: 
'ActiveDir@mail.activedir.org'Subject: [ActiveDir] domain 
naming

Our organization is planning an in-place upgrade from 
NT4 to W2K3. Our current NT domain name is no longer applicable (due to a 
corporate name change), unwieldy, and just plain ugly, and so we'd like to 
select a different name during the upgrade realizing of course that our NetBIOS 
name would remain the same.
We know that a domain rename is now a possibility, 
but from the stories we've heard we're not in a rush to go that route. We're 
just wondering how much confusion may be caused for users by having our NetBIOS 
and our domain DNS name not match. Off the tops of our heads it seems like not 
much of an issue, particularly since although we'll be a child domain we're 
planning to use just the forest root suffix for our UPNs. Our current DNS suffix 
doesn't contain our NT domain name at all, so whatever gets placed there will be 
a change for users.
Does anyone have any issues to point out that we're 
not thinking of, or opinion in general on the pros and cons of having the domain 
DNS and NetBIOS names match?
TIA, 
Cathy O'Brien Cubic Transportation Systems 

This e-mail and any attachment is for authorised use by the intended recipient(s) only. It may contain proprietary material, confidential information and/or be subject to legal privilege. It should not be copied, disclosed to, retained or used by, any other party. If you are not an intended recipient then please promptly delete this e-mail and any attachment and all copies and inform the sender. Thank you.

RE: [ActiveDir] domain naming

2005-03-15 Thread Brian Desmond

I don't think your users will have much confusion over the matter. Just have 
them use upn to login when a domain is required. It's bene a logn time since I 
did an NT4 -> AD inplace upgrade, but I want to say you can edit the netbios 
name during the upgrade. 
 
--Brian Desmond
[EMAIL PROTECTED]
Payton on the web! www.wpcp.org
 
v - 773.534.0034 x135
f - 773.534.8101
c - 312.731.3132



From: [EMAIL PROTECTED] on behalf of O'Brien, Cathy
Sent: Tue 3/15/2005 5:12 PM
To: 'ActiveDir@mail.activedir.org'
Subject: [ActiveDir] domain naming



Our organization is planning an in-place upgrade from NT4 to W2K3. Our current 
NT domain name is no longer applicable (due to a corporate name change), 
unwieldy, and just plain ugly, and so we'd like to select a different name 
during the upgrade realizing of course that our NetBIOS name would remain the 
same.

We know that a domain rename is now a possibility, but from the stories we've 
heard we're not in a rush to go that route. We're just wondering how much 
confusion may be caused for users by having our NetBIOS and our domain DNS name 
not match. Off the tops of our heads it seems like not much of an issue, 
particularly since although we'll be a child domain we're planning to use just 
the forest root suffix for our UPNs. Our current DNS suffix doesn't contain our 
NT domain name at all, so whatever gets placed there will be a change for users.

Does anyone have any issues to point out that we're not thinking of, or opinion 
in general on the pros and cons of having the domain DNS and NetBIOS names 
match?

TIA, 

Cathy O'Brien 
Cubic Transportation Systems 

<>

[ActiveDir] domain naming

2005-03-15 Thread O'Brien, Cathy

Title: domain naming





Our organization is planning an in-place upgrade from NT4 to W2K3. Our current NT domain name is no longer applicable (due to a corporate name change), unwieldy, and just plain ugly, and so we'd like to select a different name during the upgrade realizing of course that our NetBIOS name would remain the same.

We know that a domain rename is now a possibility, but from the stories we've heard we're not in a rush to go that route. We're just wondering how much confusion may be caused for users by having our NetBIOS and our domain DNS name not match. Off the tops of our heads it seems like not much of an issue, particularly since although we'll be a child domain we're planning to use just the forest root suffix for our UPNs. Our current DNS suffix doesn't contain our NT domain name at all, so whatever gets placed there will be a change for users.

Does anyone have any issues to point out that we're not thinking of, or opinion in general on the pros and cons of having the domain DNS and NetBIOS names match?

TIA,


Cathy O'Brien
Cubic Transportation Systems

RE: [ActiveDir] Domain Naming Server FSOM

2004-02-14 Thread joe

Yes, once traffic is encrypted things are messy as well as any RPC traffic.

Kerberos and DNS and LDAP calls which should comprise the majority of the
troubleshooting around DCs are all relatively nice and "easy" to
troubleshoot with Network traces.

Once you have narrowed the scope of the problem, then a dive into KBs could
very well be required. But at least the scope of the search has been so
reduced that you don't start with "it could be anything". 

If MS would release a nice RPC parser for netmon that would be a great thing
to have as then almost everything you do off of a machine that wasn't
otherwise be encrypted could fairly easily be translated and worked out. 

Quite seriously, we use netmon traces at least once every two weeks to knock
down an issue. It usually ends up finding configuration issues or DNS/DHCP
servers not responding properly (again generally configuration issues), etc.
Sometimes it discovers that a problem isn't really a problem, it is some
worm/virus that we didn't previously know about and the scanners aren't
catching. 

Also in general network traces are a good thing to do to gauge the health of
your network as most networks are wide open and people can set up anything
they want. I have seen sites running IPX for instance and when I reported it
to them to ask why they end up finding people running gaming systems that
were eating up considerable bandwidth. You find network devices that
misbehave and for some reason keep sending out broadcasts or multicasts or
arping a lot. You can find machines that have malware installed on them as
the machines broadcast to resolve various names they shouldn't be trying to
resolve. 

It is good to watch your network packets occasionally because that is one of
the first places a bad guy is going to go look as well. What secrets are you
giving away unknowingly?

  joe



-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Tony Murray
Sent: Saturday, February 14, 2004 3:51 AM
To: [EMAIL PROTECTED]
Subject: RE: [ActiveDir] Domain Naming Server FSOM

It's certainly a good suggestion, Joe.  The only thing I would say is that
network traces are not (at least in my experience) self-evident.  Generally
you can work out part of the picture, but much of it involves referring to
KBs and Whitepapers and some of it is just plain guess work.  It gets even
further complicated the more applications you have accessing AD.  And then
there's encrypted traffic to take into consideration.

Tony

-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of joe
Sent: Samstag, 14. Februar 2004 03:33
To: [EMAIL PROTECTED]
Subject: RE: [ActiveDir] Domain Naming Server FSOM

This is an excellent case to do a network trace. People may be getting sick
of me saying this but it cuts out all of the guesswork of the other 15 or so
posts. Slap the server on a shared hub or plug into your mirror port and do
a trace of the logon while the other DC is down or rebooting or whatever
case you find causes the slowness. You will most likely see requests
directed to this server and you have to then just figure out what kind of
requests they are and why they would be going to that server. Much better
than trying to guess around what kind of configuration you have. You could
possibly find it with this guessing but generally that involves changing
things until it works which is always bad news. 

Get a trace, tell us what kind of traffic is going to that rebooting box and
not being responded to. 

   joe

 

-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Salandra, Justin A.
Sent: Wednesday, February 11, 2004 1:14 PM
To: ActiveDir (E-mail)
Subject: [ActiveDir] Domain Naming Server FSOM

I have noticed that logons take an enourmous amount of time on non DC
Windows 2000 Servers if the Server running the Domain Naming Master is
rebooting.  Why is this?

Justin A. Salandra, MCSE
Senior Network Engineer
Catholic Healthcare System
212.752.7300 - office
917.455.0110 - cell
[EMAIL PROTECTED] <mailto:[EMAIL PROTECTED]> 

List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

RE: [ActiveDir] Domain Naming Server FSOM

2004-02-13 Thread joe

This is an excellent case to do a network trace. People may be getting sick
of me saying this but it cuts out all of the guesswork of the other 15 or so
posts. Slap the server on a shared hub or plug into your mirror port and do
a trace of the logon while the other DC is down or rebooting or whatever
case you find causes the slowness. You will most likely see requests
directed to this server and you have to then just figure out what kind of
requests they are and why they would be going to that server. Much better
than trying to guess around what kind of configuration you have. You could
possibly find it with this guessing but generally that involves changing
things until it works which is always bad news. 

Get a trace, tell us what kind of traffic is going to that rebooting box and
not being responded to. 

   joe

 

-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Salandra, Justin A.
Sent: Wednesday, February 11, 2004 1:14 PM
To: ActiveDir (E-mail)
Subject: [ActiveDir] Domain Naming Server FSOM

I have noticed that logons take an enourmous amount of time on non DC
Windows 2000 Servers if the Server running the Domain Naming Master is
rebooting.  Why is this?

Justin A. Salandra, MCSE
Senior Network Engineer
Catholic Healthcare System
212.752.7300 - office
917.455.0110 - cell
[EMAIL PROTECTED] <mailto:[EMAIL PROTECTED]> 

List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

RE: [ActiveDir] Domain Naming Server FSOM

2004-02-13 Thread Salandra, Justin A.

The lag is only about 3 or 4 minutes.  I have not tested workstations since
there are non in that AD Site.

 -Original Message-
From:   Bernard, Aric [mailto:[EMAIL PROTECTED] 
Sent:   Friday, February 13, 2004 1:19 PM
To: [EMAIL PROTECTED]
Subject:RE: [ActiveDir] Domain Naming Server FSOM

It is possible that your member server on boot utilized the DNM DC as
its authentication server.  When you try and logon as a user by default
you will attempt to authenticate to the same DC as the machine
authenticated to assuming of course the user and computer object are
members of the same domain.  If the machines authenticating servers is
down I would expect there to be a time out period however not of a
significant period.  

How long is it taking when the DNM is down?  Does this occur on all
member servers?  How about workstations?  What happens if the DNM is
down and you reboot the member server - does this lag time to logon
still occur?

Regards,

Aric Bernard

-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Salandra,
Justin A.
Sent: Thursday, February 12, 2004 5:56 AM
To: '[EMAIL PROTECTED]'
Subject: RE: [ActiveDir] Domain Naming Server FSOM

There are three DC's with GC's and DNS Servers in the same site as the
server that took forever to logon.

-Original Message-
From: Tomasz Onyszko [mailto:[EMAIL PROTECTED]
Sent: Thursday, February 12, 2004 8:26 AM
To: [EMAIL PROTECTED]
Subject: Re: [ActiveDir] Domain Naming Server FSOM

Salandra, Justin A. wrote:
> All 3 DC's in this site are GC's all running DNS with AD Integrated
Zones.
> One DC is the PDC Emulator, RID Master and Infrastructure Master (All
my
> DC's are GC so this is not doing much), one DC is the Domain Naming
Master
> and Schema Master.  The Other is just a DC with GC.  The one DC with
the
> Domain Naming Master was rebooted, during reboot I tried to login to a
> member server on the same subnet and site and the logon too a long
time.

OK, we don't know Your site and subnets design, so ..  how many sites do
You
have and how many DC's is in thsi sites.
In this site where problem occurs there is any other DC, or this holding
domain naming role is the only one DC in site?

If it is an alone DC, when it is unavilable then users from this site
have
to
logon to DC in other site, after this problem occurs chec to which DC
this
station was logged on.

--
Tomasz Onyszko [MVP]- [EMAIL PROTECTED]
http://www.w2k.pl

List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive:
http://www.mail-archive.com/activedir%40mail.activedir.org/
List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive:
http://www.mail-archive.com/activedir%40mail.activedir.org/

List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

RE: [ActiveDir] Domain Naming Server FSOM

2004-02-13 Thread Bernard, Aric

It is possible that your member server on boot utilized the DNM DC as
its authentication server.  When you try and logon as a user by default
you will attempt to authenticate to the same DC as the machine
authenticated to assuming of course the user and computer object are
members of the same domain.  If the machines authenticating servers is
down I would expect there to be a time out period however not of a
significant period.  

How long is it taking when the DNM is down?  Does this occur on all
member servers?  How about workstations?  What happens if the DNM is
down and you reboot the member server - does this lag time to logon
still occur?

Regards,

Aric Bernard

-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Salandra,
Justin A.
Sent: Thursday, February 12, 2004 5:56 AM
To: '[EMAIL PROTECTED]'
Subject: RE: [ActiveDir] Domain Naming Server FSOM

There are three DC's with GC's and DNS Servers in the same site as the
server that took forever to logon.

-Original Message-
From: Tomasz Onyszko [mailto:[EMAIL PROTECTED]
Sent: Thursday, February 12, 2004 8:26 AM
To: [EMAIL PROTECTED]
Subject: Re: [ActiveDir] Domain Naming Server FSOM

Salandra, Justin A. wrote:
> All 3 DC's in this site are GC's all running DNS with AD Integrated
Zones.
> One DC is the PDC Emulator, RID Master and Infrastructure Master (All
my
> DC's are GC so this is not doing much), one DC is the Domain Naming
Master
> and Schema Master.  The Other is just a DC with GC.  The one DC with
the
> Domain Naming Master was rebooted, during reboot I tried to login to a
> member server on the same subnet and site and the logon too a long
time.

OK, we don't know Your site and subnets design, so ..  how many sites do
You
have and how many DC's is in thsi sites.
In this site where problem occurs there is any other DC, or this holding
domain naming role is the only one DC in site?

If it is an alone DC, when it is unavilable then users from this site
have
to
logon to DC in other site, after this problem occurs chec to which DC
this
station was logged on.

--
Tomasz Onyszko [MVP]- [EMAIL PROTECTED]
http://www.w2k.pl

List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive:
http://www.mail-archive.com/activedir%40mail.activedir.org/
List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive:
http://www.mail-archive.com/activedir%40mail.activedir.org/

List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

RE: [ActiveDir] Domain Naming Server FSOM

2004-02-12 Thread Salandra, Justin A.

There are three DC's with GC's and DNS Servers in the same site as the
server that took forever to logon.

-Original Message-
From: Tomasz Onyszko [mailto:[EMAIL PROTECTED]
Sent: Thursday, February 12, 2004 8:26 AM
To: [EMAIL PROTECTED]
Subject: Re: [ActiveDir] Domain Naming Server FSOM

Salandra, Justin A. wrote:
> All 3 DC's in this site are GC's all running DNS with AD Integrated Zones.
> One DC is the PDC Emulator, RID Master and Infrastructure Master (All my
> DC's are GC so this is not doing much), one DC is the Domain Naming Master
> and Schema Master.  The Other is just a DC with GC.  The one DC with the
> Domain Naming Master was rebooted, during reboot I tried to login to a
> member server on the same subnet and site and the logon too a long time.

OK, we don't know Your site and subnets design, so ..  how many sites do You
have and how many DC's is in thsi sites.
In this site where problem occurs there is any other DC, or this holding
domain naming role is the only one DC in site?

If it is an alone DC, when it is unavilable then users from this site have
to
logon to DC in other site, after this problem occurs chec to which DC this
station was logged on.

--
Tomasz Onyszko [MVP]- [EMAIL PROTECTED]
http://www.w2k.pl

List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

RE: [ActiveDir] Domain Naming Server FSOM

2004-02-12 Thread Tony Murray

In that case I would check the site and subnet definitions in AD for any anomalies, 
espcially the subnet that the member server is on.  Also check to see that the DNS SRV 
records for DCs and GCs appear correctly for the site.

Tony
-- Original Message --
Wrom: ZRCLBDXRQBGJSNBOHMKHJYFMYXOEAIJJPHSCRTNHGSWZID
Reply-To: [EMAIL PROTECTED]
Date:  Thu, 12 Feb 2004 08:13:45 -0500

All 3 DC's in this site are GC's all running DNS with AD Integrated Zones.
One DC is the PDC Emulator, RID Master and Infrastructure Master (All my
DC's are GC so this is not doing much), one DC is the Domain Naming Master
and Schema Master.  The Other is just a DC with GC.  The one DC with the
Domain Naming Master was rebooted, during reboot I tried to login to a
member server on the same subnet and site and the logon too a long time.

 -Original Message-
Wrom: REXCAXZOWCONEUQZAAFXISHJEXXIMQZUIVOTQNQEMSFDUL
Sent:   Thursday, February 12, 2004 3:51 AM
To: [EMAIL PROTECTED]
Subject:    Re: [ActiveDir] Domain Naming Server FSOM

I think Tomasz is on the right track.  The fact that the DC in question
holds the Domain Master FSMO should not make any difference, so it must be
something else about this DC.

It is likely that logons will be slow if there are no other on-site GCs
available.  The GC is required during logon to enumerate universal group
membership.  If clients are being serviced by an off-site GC then it is very
likely that logons will be slow.

If GC availability is not the issue then look at what else the DC has (e.g.
DNS Server).

Tony

-- Original Message --
Wrom: MSFDULHPQQWOYIYZUNNYCGPKYLEJGDGVC
Reply-To: [EMAIL PROTECTED]
Date:  Wed, 11 Feb 2004 19:56:02 +0100

Fuller, Stuart wrote:
> Is the Domain Naming Master FSMO on the same DC that is the PDC emulator??
> 
Or is it a GC server in this site (did You have more GC)?

-- 
Tomasz Onyszko [MVP]- [EMAIL PROTECTED]
http://www.w2k.pl
List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

Re: [ActiveDir] Domain Naming Server FSOM

2004-02-12 Thread Tomasz Onyszko

Salandra, Justin A. wrote:
> All 3 DC's in this site are GC's all running DNS with AD Integrated Zones.
> One DC is the PDC Emulator, RID Master and Infrastructure Master (All my
> DC's are GC so this is not doing much), one DC is the Domain Naming Master
> and Schema Master.  The Other is just a DC with GC.  The one DC with the
> Domain Naming Master was rebooted, during reboot I tried to login to a
> member server on the same subnet and site and the logon too a long time.

OK, we don't know Your site and subnets design, so ..  how many sites do You
have and how many DC's is in thsi sites. 
In this site where problem occurs there is any other DC, or this holding
domain naming role is the only one DC in site?

If it is an alone DC, when it is unavilable then users from this site have to
logon to DC in other site, after this problem occurs chec to which DC this
station was logged on.

-- 
Tomasz Onyszko [MVP]- [EMAIL PROTECTED]
http://www.w2k.pl

List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

RE: [ActiveDir] Domain Naming Server FSOM

2004-02-12 Thread Salandra, Justin A.

All 3 DC's in this site are GC's all running DNS with AD Integrated Zones.
One DC is the PDC Emulator, RID Master and Infrastructure Master (All my
DC's are GC so this is not doing much), one DC is the Domain Naming Master
and Schema Master.  The Other is just a DC with GC.  The one DC with the
Domain Naming Master was rebooted, during reboot I tried to login to a
member server on the same subnet and site and the logon too a long time.

 -Original Message-
From:   Tony Murray [mailto:[EMAIL PROTECTED] 
Sent:   Thursday, February 12, 2004 3:51 AM
To: [EMAIL PROTECTED]
Subject:    Re: [ActiveDir] Domain Naming Server FSOM

I think Tomasz is on the right track.  The fact that the DC in question
holds the Domain Master FSMO should not make any difference, so it must be
something else about this DC.

It is likely that logons will be slow if there are no other on-site GCs
available.  The GC is required during logon to enumerate universal group
membership.  If clients are being serviced by an off-site GC then it is very
likely that logons will be slow.

If GC availability is not the issue then look at what else the DC has (e.g.
DNS Server).

Tony

-- Original Message --
Wrom: MSFDULHPQQWOYIYZUNNYCGPKYLEJGDGVC
Reply-To: [EMAIL PROTECTED]
Date:  Wed, 11 Feb 2004 19:56:02 +0100

Fuller, Stuart wrote:
> Is the Domain Naming Master FSMO on the same DC that is the PDC emulator??
> 
Or is it a GC server in this site (did You have more GC)?

-- 
Tomasz Onyszko [MVP]- [EMAIL PROTECTED]
http://www.w2k.pl
List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

Re: [ActiveDir] Domain Naming Server FSOM

2004-02-12 Thread Tony Murray

I think Tomasz is on the right track.  The fact that the DC in question holds the 
Domain Master FSMO should not make any difference, so it must be something else about 
this DC.

It is likely that logons will be slow if there are no other on-site GCs available.  
The GC is required during logon to enumerate universal group membership.  If clients 
are being serviced by an off-site GC then it is very likely that logons will be slow.

If GC availability is not the issue then look at what else the DC has (e.g. DNS 
Server).

Tony

-- Original Message --
Wrom: MSFDULHPQQWOYIYZUNNYCGPKYLEJGDGVC
Reply-To: [EMAIL PROTECTED]
Date:  Wed, 11 Feb 2004 19:56:02 +0100

Fuller, Stuart wrote:
> Is the Domain Naming Master FSMO on the same DC that is the PDC emulator??
> 
Or is it a GC server in this site (did You have more GC)?

-- 
Tomasz Onyszko [MVP]- [EMAIL PROTECTED]
http://www.w2k.pl
List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

RE: [ActiveDir] Domain Naming Server FSOM

2004-02-11 Thread Salandra, Justin A.

The server is in a site with 3 GC

 -Original Message-
From:   Tomasz Onyszko [mailto:[EMAIL PROTECTED] 
Sent:   Wednesday, February 11, 2004 1:56 PM
To: [EMAIL PROTECTED]
Subject:Re: [ActiveDir] Domain Naming Server FSOM

Fuller, Stuart wrote:
> Is the Domain Naming Master FSMO on the same DC that is the PDC emulator??
> 
Or is it a GC server in this site (did You have more GC)?

-- 
Tomasz Onyszko [MVP]- [EMAIL PROTECTED]
http://www.w2k.pl
List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

RE: [ActiveDir] Domain Naming Server FSOM

2004-02-11 Thread Salandra, Justin A.

NO  It is on the Schema Master

 -Original Message-
From:   Fuller, Stuart [mailto:[EMAIL PROTECTED] 
Sent:   Wednesday, February 11, 2004 1:45 PM
To: '[EMAIL PROTECTED]'
Subject:    RE: [ActiveDir] Domain Naming Server FSOM

Is the Domain Naming Master FSMO on the same DC that is the PDC emulator??

-Stuart 

-Original Message-
From: Salandra, Justin A. [mailto:[EMAIL PROTECTED] 
Sent: Wednesday, February 11, 2004 11:14 AM
To: ActiveDir (E-mail)
Subject: [ActiveDir] Domain Naming Server FSOM

I have noticed that logons take an enourmous amount of time on non DC
Windows 2000 Servers if the Server running the Domain Naming Master is
rebooting.  Why is this?

Justin A. Salandra, MCSE
Senior Network Engineer
Catholic Healthcare System
212.752.7300 - office
917.455.0110 - cell
[EMAIL PROTECTED] <mailto:[EMAIL PROTECTED]> 

List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

Re: [ActiveDir] Domain Naming Server FSOM

2004-02-11 Thread Tomasz Onyszko

Fuller, Stuart wrote:
Is the Domain Naming Master FSMO on the same DC that is the PDC emulator??

Or is it a GC server in this site (did You have more GC)?

--
Tomasz Onyszko [MVP]- [EMAIL PROTECTED]
http://www.w2k.pl
List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

RE: [ActiveDir] Domain Naming Server FSOM

2004-02-11 Thread Fuller, Stuart

Is the Domain Naming Master FSMO on the same DC that is the PDC emulator??

-Stuart 

-Original Message-
From: Salandra, Justin A. [mailto:[EMAIL PROTECTED] 
Sent: Wednesday, February 11, 2004 11:14 AM
To: ActiveDir (E-mail)
Subject: [ActiveDir] Domain Naming Server FSOM

I have noticed that logons take an enourmous amount of time on non DC
Windows 2000 Servers if the Server running the Domain Naming Master is
rebooting.  Why is this?

Justin A. Salandra, MCSE
Senior Network Engineer
Catholic Healthcare System
212.752.7300 - office
917.455.0110 - cell
[EMAIL PROTECTED] <mailto:[EMAIL PROTECTED]> 

List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

[ActiveDir] Domain Naming Server FSOM

2004-02-11 Thread Salandra, Justin A.

I have noticed that logons take an enourmous amount of time on non DC
Windows 2000 Servers if the Server running the Domain Naming Master is
rebooting.  Why is this?

Justin A. Salandra, MCSE
Senior Network Engineer
Catholic Healthcare System
212.752.7300 - office
917.455.0110 - cell
[EMAIL PROTECTED]  

List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

Re: [ActiveDir] Domain Naming Best Practices

2003-07-24 Thread Glenn Corbett

In your case, geographic domain names are probably
easier to work with, since its unlikely that the world regions will actually
change anytime soon (but dont quote me on that).
It really comes down to management of the network,
and what your admins feel more comfortable dealing with.
Domain/Forest names are really only an issue
in the case where things change, its a real pain to move these things
around.
I guess the question it what do they hope to
acomplish with generic names ? If there will be some domain consolidation in the
future (eg combining AMER and EAME) it could be confusing for users /
management, or if you migrate part of a region into another region due to
increases / optimisation of links / link speeds.
For geographic domains, I normally stick with
naming the regions after their geographic boundary, but always resist
including the company / organisation name as part of the forest / domain names,
as this is more likely to change than anything else.
Theres really no hard-and-fast rule for domain
names, its left up to the organisation to make the best determination for their
environment.
G.

- Original Message -
From:
Morley, Scott
To: '[EMAIL PROTECTED]'

Sent: Thursday, July 24, 2003 12:21
AM
Subject: [ActiveDir] Domain Naming Best
Practices

All,
I have been asked
by managment to defend my domain naming standard. I am using
geographical locations such as AMER (N&S America), EAME (Europe, Africa,
& Middle East), and APAC (Asia Pacific & Australia). I am being
asked why can't we use generic names such as Region1, Region2, and so
forth. I can say all I want, but I need some outside evidence to back me
up or if I am totally off base, I'll take some
recommendations.
Thanks for the
anticipated help.
Scott Morley
MCSE
2000/4.0, Exchange 2000/5.5, MCT, CCNA, CNE, CNI Senior
Systems Engineer/Architect Global
Messaging Services, Starwood Technology Center Starwood
Hotels and Resorts, Worldwide
Phone:
781-348-7120
Learning is not compulsory... neither is survival.- W. Edwards Deming
This electronic message transmission contains information from the Company that may be proprietary, confidential and/or privileged.
The information is intended only for the use of the individual(s) or entity named above. If you are not the intended recipient, be
aware that any disclosure, copying or distribution or use of the contents of this information is prohibited. If you have received
this electronic transmission in error, please notify the sender immediately by replying to the address listed in the "From:" field.

RE: [ActiveDir] Domain Naming Best Practices

2003-07-23 Thread Roger Seielstad

Title: Message

Ok -
how are the sites managed? Are they managed geographically, or by region, or
business unit?
--
Roger D. Seielstad -
MTS MCSE MS-MVP Sr. Systems Administrator Inovis Inc.

-Original Message-From: Morley, Scott
[mailto:[EMAIL PROTECTED] Sent: Wednesday, July 23,
2003 11:39 AMTo: '[EMAIL PROTECTED]'Subject:
RE: [ActiveDir] Domain Naming Best Practices
Managment actually refers to these locations by their geographical name
and not the generic name. They think that generic names are more
flexible.

-Original Message-From: Bryan Schlegel
[mailto:[EMAIL PROTECTED]Sent: Wednesday, July 23,
2003 10:45 AMTo: [EMAIL PROTECTED]Subject:
RE: [ActiveDir] Domain Naming Best Practices
Hate to say it but what if you are replaced by management
and they seem to think that EAME is region2 and it is actually
region3then they make a change.
I
just like to name things after their functionsome people like to use
their dogs, some people like to generically name things and use
numbers. Hate to say it but I think it is all about preference and
easy reference.

-Original Message-From: Morley,
Scott [mailto:[EMAIL PROTECTED] Sent: Wednesday,
July 23, 2003 10:22 AMTo:
'[EMAIL PROTECTED]'Subject: [ActiveDir] Domain
Naming Best Practices
All,
I have been
asked by managment to defend my domain naming standard. I am using
geographical locations such as AMER (N&S America), EAME (Europe,
Africa, & Middle East), and APAC (Asia Pacific & Australia).
I am being asked why can't we use generic names such as Region1, Region2,
and so forth. I can say all I want, but I need some outside evidence
to back me up or if I am totally off base, I'll take some
recommendations.
Thanks for the
anticipated help.
Scott Morley
MCSE
2000/4.0, Exchange 2000/5.5, MCT, CCNA, CNE, CNI Senior
Systems Engineer/Architect Global
Messaging Services, Starwood Technology Center Starwood
Hotels and Resorts, Worldwide
Phone:
781-348-7120
Learning is not compulsory... neither is
survival.- W. Edwards
Deming
This electronic message transmission contains information from the Company that may be proprietary, confidential and/or privileged.
The information is intended only for the use of the individual(s) or entity named above. If you are not the intended recipient, be
aware that any disclosure, copying or distribution or use of the contents of this information is prohibited. If you have received
this electronic transmission in error, please notify the sender immediately by replying to the address listed in the "From:" field.
<This electronic message transmission contains information from the Company that may be proprietary, confidential and/or privileged.
The information is intended only for the use of the individual(s) or entity named above. If you are not the intended recipient, be
aware that any disclosure, copying or distribution or use of the contents of this information is prohibited. If you have received
this electronic transmission in error, please notify the sender immediately by replying to the address listed in the "From:" field.
/BODY>

RE: [ActiveDir] Domain Naming Best Practices

2003-07-23 Thread Morley, Scott

Title: Message

Managment actually refers to these locations by their geographical name
and not the generic name. They think that generic names are more
flexible.

-Original Message-From: Bryan Schlegel
[mailto:[EMAIL PROTECTED]Sent: Wednesday, July 23, 2003
10:45 AMTo: [EMAIL PROTECTED]Subject: RE:
[ActiveDir] Domain Naming Best Practices
Hate
to say it but what if you are replaced by management and they seem
to think that EAME is region2 and it is actually region3then they make a
change.
I
just like to name things after their functionsome people like to use their
dogs, some people like to generically name things and use numbers. Hate
to say it but I think it is all about preference and easy
reference.

-Original Message-From: Morley, Scott
[mailto:[EMAIL PROTECTED] Sent: Wednesday, July
23, 2003 10:22 AMTo:
'[EMAIL PROTECTED]'Subject: [ActiveDir] Domain Naming
Best Practices
All,
I have been
asked by managment to defend my domain naming standard. I am using
geographical locations such as AMER (N&S America), EAME (Europe, Africa,
& Middle East), and APAC (Asia Pacific & Australia). I am
being asked why can't we use generic names such as Region1, Region2, and so
forth. I can say all I want, but I need some outside evidence to back
me up or if I am totally off base, I'll take some
recommendations.
Thanks for the
anticipated help.
Scott Morley
MCSE
2000/4.0, Exchange 2000/5.5, MCT, CCNA, CNE, CNI Senior
Systems Engineer/Architect Global
Messaging Services, Starwood Technology Center Starwood
Hotels and Resorts, Worldwide
Phone:
781-348-7120
Learning is not compulsory... neither is survival.- W. Edwards
Deming
This electronic message transmission contains information from the Company that may be proprietary, confidential and/or privileged.
The information is intended only for the use of the individual(s) or entity named above. If you are not the intended recipient, be
aware that any disclosure, copying or distribution or use of the contents of this information is prohibited. If you have received
this electronic transmission in error, please notify the sender immediately by replying to the address listed in the "From:" field.
<
This electronic message transmission contains information from the Company that may be proprietary, confidential and/or privileged.
The information is intended only for the use of the individual(s) or entity named above. If you are not the intended recipient, be
aware that any disclosure, copying or distribution or use of the contents of this information is prohibited. If you have received
this electronic transmission in error, please notify the sender immediately by replying to the address listed in the "From:" field.

/BODY>

RE: [ActiveDir] Domain Naming Best Practices

2003-07-23 Thread Morley, Scott

Title: Message

For
the most part admins will be managing the domains, there is always room for
confusion if a location is placed in region1 as compared to region2. We
would always be translating the generic name to the geographical one. Our
migration process will be a long one, with over 700 locations to migrate around
the world. So inevitably a mistake will be made and a location will be
accidently migrated to the wrong region.

-Original Message-From: Roger Seielstad
[mailto:[EMAIL PROTECTED]Sent: Wednesday, July 23, 2003
10:26 AMTo: '[EMAIL PROTECTED]'Subject: RE:
[ActiveDir] Domain Naming Best Practices
I'm
going to ask a fairly simple question: Why does it matter either
way?
Why
does one matter more to you and the other matter more to
them?
--
Roger D. Seielstad
- MTS MCSE MS-MVP Sr. Systems Administrator Inovis Inc.

-Original Message-From: Morley, Scott
[mailto:[EMAIL PROTECTED] Sent: Wednesday, July
23, 2003 10:22 AMTo:
'[EMAIL PROTECTED]'Subject: [ActiveDir] Domain Naming
Best Practices
All,
I have been
asked by managment to defend my domain naming standard. I am using
geographical locations such as AMER (N&S America), EAME (Europe, Africa,
& Middle East), and APAC (Asia Pacific & Australia). I am
being asked why can't we use generic names such as Region1, Region2, and so
forth. I can say all I want, but I need some outside evidence to back
me up or if I am totally off base, I'll take some
recommendations.
Thanks for the
anticipated help.
Scott Morley
MCSE
2000/4.0, Exchange 2000/5.5, MCT, CCNA, CNE, CNI Senior
Systems Engineer/Architect Global
Messaging Services, Starwood Technology Center Starwood
Hotels and Resorts, Worldwide
Phone:
781-348-7120
Learning is not compulsory... neither is survival.- W. Edwards
Deming
This electronic message transmission contains information from the Company that may be proprietary, confidential and/or privileged.
The information is intended only for the use of the individual(s) or entity named above. If you are not the intended recipient, be
aware that any disclosure, copying or distribution or use of the contents of this information is prohibited. If you have received
this electronic transmission in error, please notify the sender immediately by replying to the address listed in the "From:" field.
<
This electronic message transmission contains information from the Company that may be proprietary, confidential and/or privileged.
The information is intended only for the use of the individual(s) or entity named above. If you are not the intended recipient, be
aware that any disclosure, copying or distribution or use of the contents of this information is prohibited. If you have received
this electronic transmission in error, please notify the sender immediately by replying to the address listed in the "From:" field.

/BODY>

Re: [ActiveDir] Domain Naming Best Practices

2003-07-23 Thread DAVID S. CARTER

Either one is OK as long as the naming convention means something to
your company.  

Dave
>>> [EMAIL PROTECTED] 07/23/03 10:21AM >>>
All,
 
I have been asked by managment to defend my domain naming standard.  I
am
using geographical locations such as AMER (N&S America), EAME (Europe,
Africa, & Middle East), and APAC (Asia Pacific & Australia).  I am
being
asked why can't we use generic names such as Region1, Region2, and so
forth.
I can say all I want, but I need some outside evidence to back me up or
if I
am totally off base, I'll take some recommendations.
 
Thanks for the anticipated help.
 

Scott Morley


MCSE 2000/4.0, Exchange 2000/5.5, MCT, CCNA, CNE, CNI 
Senior Systems Engineer/Architect 
Global Messaging Services, Starwood Technology Center 
Starwood Hotels and Resorts, Worldwide

Phone: 781-348-7120

Learning is not compulsory... neither is survival.
- W. Edwards Deming 

 

 

The information is intended only for the use of the individual(s) or
entity named above.  If you are not the intended recipient, be
aware that any disclosure, copying or distribution or use of the
contents of this information is prohibited.  If you have received
this electronic transmission in error, please notify the sender
immediately by replying to the address listed in the "From:" field.

List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

RE: [ActiveDir] Domain Naming Best Practices

2003-07-23 Thread Bryan Schlegel

Title: Message



Hate 
to say it but what if you are replaced by management and they seem to 
think that EAME is region2 and it is actually region3then they make a 
change.  
 
I just 
like to name things after their functionsome people like to use their dogs, 
some people like to generically name things and use numbers.  Hate to say 
it but I think it is all about preference and easy 
reference.

  
  -Original Message-From: Morley, Scott 
  [mailto:[EMAIL PROTECTED] Sent: Wednesday, July 23, 
  2003 10:22 AMTo: '[EMAIL PROTECTED]'Subject: 
  [ActiveDir] Domain Naming Best Practices
  All,
   
  I have been asked 
  by managment to defend my domain naming standard.  I am using 
  geographical locations such as AMER (N&S America), EAME (Europe, Africa, 
  & Middle East), and APAC (Asia Pacific & Australia).  I am being 
  asked why can't we use generic names such as Region1, Region2, and so 
  forth.  I can say all I want, but I need some outside evidence to back me 
  up or if I am totally off base, I'll take some 
  recommendations.
   
  Thanks for the 
  anticipated help.
   
  Scott Morley
  MCSE 
  2000/4.0, Exchange 2000/5.5, MCT, CCNA, CNE, CNI Senior 
  Systems Engineer/Architect Global 
  Messaging Services, Starwood Technology Center Starwood 
  Hotels and Resorts, Worldwide
  Phone: 
  781-348-7120
  Learning is not compulsory... neither is survival.- W. Edwards Deming 
   
   This electronic message transmission contains information from the Company that may be proprietary, confidential and/or privileged.
The information is intended only for the use of the individual(s) or entity named above.  If you are not the intended recipient, be
aware that any disclosure, copying or distribution or use of the contents of this information is prohibited.  If you have received
this electronic transmission in error, please notify the sender immediately by replying to the address listed in the "From:" field.

RE: [ActiveDir] Domain Naming Best Practices

2003-07-23 Thread Roger Seielstad

Title: Message

I'm
going to ask a fairly simple question: Why does it matter either
way?
Why
does one matter more to you and the other matter more to
them?
--
Roger D. Seielstad -
MTS MCSE MS-MVP Sr. Systems Administrator Inovis Inc.

-Original Message-From: Morley, Scott
[mailto:[EMAIL PROTECTED] Sent: Wednesday, July 23,
2003 10:22 AMTo: '[EMAIL PROTECTED]'Subject:
[ActiveDir] Domain Naming Best Practices
All,
I have been asked
by managment to defend my domain naming standard. I am using
geographical locations such as AMER (N&S America), EAME (Europe, Africa,
& Middle East), and APAC (Asia Pacific & Australia). I am being
asked why can't we use generic names such as Region1, Region2, and so
forth. I can say all I want, but I need some outside evidence to back me
up or if I am totally off base, I'll take some
recommendations.
Thanks for the
anticipated help.
Scott Morley
MCSE
2000/4.0, Exchange 2000/5.5, MCT, CCNA, CNE, CNI Senior
Systems Engineer/Architect Global
Messaging Services, Starwood Technology Center Starwood
Hotels and Resorts, Worldwide
Phone:
781-348-7120
Learning is not compulsory... neither is survival.- W. Edwards Deming
This electronic message transmission contains information from the Company that may be proprietary, confidential and/or privileged.
The information is intended only for the use of the individual(s) or entity named above. If you are not the intended recipient, be
aware that any disclosure, copying or distribution or use of the contents of this information is prohibited. If you have received
this electronic transmission in error, please notify the sender immediately by replying to the address listed in the "From:" field.

[ActiveDir] Domain Naming Best Practices

2003-07-23 Thread Morley, Scott




All,
 
I have been asked by
managment to defend my domain naming standard.  I am using geographical
locations such as AMER (N&S America), EAME (Europe, Africa, & Middle
East), and APAC (Asia Pacific & Australia).  I am being asked why can't
we use generic names such as Region1, Region2, and so forth.  I can say all
I want, but I need some outside evidence to back me up or if I am totally off
base, I'll take some recommendations.
 
Thanks for the
anticipated help.
 
Scott Morley
MCSE
2000/4.0, Exchange 2000/5.5, MCT, CCNA, CNE, CNI Senior
Systems Engineer/Architect Global
Messaging Services, Starwood Technology Center Starwood
Hotels and Resorts, Worldwide
Phone:
781-348-7120
Learning is not compulsory... neither is survival.- W. Edwards Deming 
 
 
This electronic message transmission contains information from the Company that may be proprietary, confidential and/or privileged.
The information is intended only for the use of the individual(s) or entity named above.  If you are not the intended recipient, be
aware that any disclosure, copying or distribution or use of the contents of this information is prohibited.  If you have received
this electronic transmission in error, please notify the sender immediately by replying to the address listed in the "From:" field.

RE: [ActiveDir] Domain naming

2002-09-19 Thread Thornley, Dave H


Thanks for all the replys - should set the management minds at rest...!

dave

--
Dave Thornley
Systems Support
Sheffield Hallam University

Tel (0114) 225 3822

List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

RE: [ActiveDir] Domain naming - Private or Public?

2001-07-23 Thread Adam Wood



> Should a domain name be private or public?  We are 
> considering a dedicated root domain and two or three domains directly
under it.  I 
> feel that our domain name should be private.  That is a domain named
like 
> mydomain.priv or mydomain.local.  Is there a compelling reason to use
an 
> actual publishable name? (mydomain.edu)

I'm strongly of the opinion that a publishable name should be used.  If
it turns out that private will suit you best, then you don't actually
have to publish it yet.  The "published" DNS entries for your name can
be blackholed if you like.  It's just nice to have the option in future.

The reason I say this is that Windows .NET (the operating system
formerly known as Whistler) Active Directory cross forest trusts are
Kerberos trusts between forest root domains.  This means you need DNS
resolution between every domain in each forest and the root domain of
the other forest (and more besides, but that is the key bit.)

So if you have a private name and later upgrade to .NET AD and have a
cross forest trust with the example.com forest, every client in the
example.com forest will need to be able to resolve mydomain.priv.  Which
is a possible (but unenviable and hard to maintain) kludge to their DNS
config.  Worse still, say that you choose "forest.root" as your forest
root domain name -- and the nice folks at Example Corp also choose
"forest.root" as their forest root domain name, and then you try to make
a cross forest trust...

(Of course, there's no need to actually use the top level "mydomain.edu"
-- you could always use something like
"really.secret.domain.name.mydomain.edu")

-- 
Adam Wood
http://www.adamwood.com

List info: http://www.activedir.org/mail_list.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

[ActiveDir] Domain naming - Private or Public?

2001-07-23 Thread Sockrider, Howard L.


Should a domain name be private or public?  We are considering a dedicated
root domain and two or three domains directly under it.  I feel that our
domain name should be private.  That is a domain named like mydomain.priv or
mydomain.local.  Is there a compelling reason to use an actual publishable
name? (mydomain.edu)



-
Howard Sockrider
Methodist Health Care System
Manager - Email, Database, and Access Control

--

List info: http://www.activedir.org/mail_list.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

RE: [ActiveDir] domain naming

RE: [ActiveDir] domain naming

RE: [ActiveDir] domain naming

[ActiveDir] domain naming

RE: [ActiveDir] Domain Naming Server FSOM

RE: [ActiveDir] Domain Naming Server FSOM

RE: [ActiveDir] Domain Naming Server FSOM

RE: [ActiveDir] Domain Naming Server FSOM

RE: [ActiveDir] Domain Naming Server FSOM

RE: [ActiveDir] Domain Naming Server FSOM

Re: [ActiveDir] Domain Naming Server FSOM

RE: [ActiveDir] Domain Naming Server FSOM

Re: [ActiveDir] Domain Naming Server FSOM

RE: [ActiveDir] Domain Naming Server FSOM

RE: [ActiveDir] Domain Naming Server FSOM

Re: [ActiveDir] Domain Naming Server FSOM

RE: [ActiveDir] Domain Naming Server FSOM

[ActiveDir] Domain Naming Server FSOM

Re: [ActiveDir] Domain Naming Best Practices

RE: [ActiveDir] Domain Naming Best Practices

RE: [ActiveDir] Domain Naming Best Practices

RE: [ActiveDir] Domain Naming Best Practices

Re: [ActiveDir] Domain Naming Best Practices

RE: [ActiveDir] Domain Naming Best Practices

RE: [ActiveDir] Domain Naming Best Practices

[ActiveDir] Domain Naming Best Practices

RE: [ActiveDir] Domain naming

RE: [ActiveDir] Domain naming - Private or Public?

[ActiveDir] Domain naming - Private or Public?

29 matches

Site Navigation

Mail list logo

Footer information