RE: domain authentication
From: Evan Mann (emann@questinc.org)Date: 12/27/01
- Previous message: Bill Mote: "RE: domain authentication"
- Maybe in reply to: Evan Mann: "domain authentication"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: Evan Mann <emann@questinc.org> To: focus-ms@securityfocus.com Date: Thu, 27 Dec 2001 08:28:50 -0500
Thanks to all who responded to my domain authentication post. I quickly saw
the my concerns shouldn't be existing. I've never had problems with people
authenticating but stumbled across one the other day, which ended up having
to do with VPN access only to the PDC and I guess the timeout I set was
still not long enough for the machine to hit the PDC (only tried 60 seconds
as the max).
In any event, I fixed my problem and learned about how NT4 is designed for
authentication. My PDC is actually fairly low load 99% of the time.
Some people answered my questions about when I upgrade to a Win2000 domain,
but I have a particular one.
My network topology puts an NT4 BDC in every building on my WAN, giving me 7
BDCs in 7 different locations. My main office than has 1 BDC and the PDC.
When I upgrade to Win2000 domain, would it be the proper thing to do to
upgrade my PDC, then begin upgrading the BDC's, or would it be better to
upgrade the BDCs to Win2000 Server and then ultimately the PDC to 2000+AD ?
(The only problem I see with the 2nd one is all these Win2000 clients I have
at locations with BDCs won't be able to authenticate with that local server,
or will they?)
- Previous message: Bill Mote: "RE: domain authentication"
- Maybe in reply to: Evan Mann: "domain authentication"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
