Domain Controller and

Active Directory (part 3)

Overview

Introduction to Additional Domain Controller

Before adding an ADC
Introduction to Active Directory Replication
Introduction to ADC

Create additional domain controllers when you want to improve the availability
and reliability of network services

Provide fault tolerance, balance the load of existing domain controllers, provide
additional infrastructure support to sites, and improve performance by making it
easier for clients to connect to a domain controller when they log on to the
network

More than one domain controller in a domain makes it possible for the domain
to continue to function if a domain controller fails or must be disconnected
Before adding an ADC

Determine which sites require a domain controller

Determine whether to add an additional domain controller over
the network or through backup media taken from an existing
domain controller
Determine whether you want your new domain controller to
host a global catalog
Domain controllers running Windows 2000 or Windows
Server 2003 are available
Obtain the administrative credentials necessary to add a
domain controller
Identify the DNS domain name of the Active Directory domain
to which you want to add the additional domain controller
Introduction to Active Directory Replication

Replication Within Sites

What Are Directory Partitions?
What Is Replication Topology?
Automatic Generation of Replication Topology
Global Catalog and Replication of Partitions
Replication Within Sites
 What Are Directory Partitions?

Contains:
Definitions and rules for creating
and manipulating objects and
attributes
Forest Schema
Information about the Active
Directory structure
Configuration
Information about domain-specific
Domain objects
<Domain>
Configurable
replication Information about applications
<Application>

Active Directory Database

What Is Replication Topology?

A1 A2 B2

B1

A3 A4 B3

Domain Controllers Domain A Topology

DomainBATopology
Topology
from Various
the SameDomains
Domain Domain
Schemaand
andConfiguration
Configuration
Schema
Topology
Topology
Automatic Generation of Replication Topology

KCC
KCC A2 KCC
A1 A3

A8 A4
Automatic Generation of Replication Topology

KCC KCC
A7 A5
A6

KCC KCC
KCC
Global Catalog and Replication of Partitions

Partial Directory Partition

A1
Replica A2 B2

B1 Schema

Configuration
A3 A4 B3
contoso.msft Holds read only copy of all
namerica.contoso.msft domain directory partitions

Global Catalog Server

Domain A Topology
DomainBATopology
Domain Topology
Schema/Config
Schema Topology
and Configuration
Topology
How to create an ADC

Join domain
Click Start, click Run, and then type dcpromo
On the Domain Controller Type page, click Additional domain
controller for an existing domain
On the Network Credentials page, type the user name, password,
and user domain of the user account you want to use for this
operation.
The user account must be a member of the Domain Admins group
for the target domain.
In AD Sites and Services, right click NTDS Settings, click Property,
and then check GC.
Note: For faster update:
PDC and ADC restart File Replicate Service.
In AD Sites and Services, click NTDS Settings, and click Replicate
Now.
PDC restart DNS.
How to create a Backup DNS server

Install DNS on Backup server

On Master DNS server:
 Click on the domain name, click Property, and then check
Allow Zone Transfer To the following server, add IP address
of Backup server.
On Backup DNS server:
 Create a new Forward Lookup Zone, click Secondary zone,
and then add zone name - the domain name on Master server

All computers in the domain add Alternate DNS – IP address of Backup DNS
Server
Lab: Implementing Site to manage AD

Creating an Additional Domain Controller

Creating Backup DNS server on ADC
Lab: Implementing Site to manage AD

Additional DC
Primary DC

client

3 computers connect via LAN