Re: Authenticating to wrong DC
From: Steven L Umbach (n9rou_at_n0-spam-for-me-comcast.net)
Date: 11/15/04
- Next message: Shenan Stanley: "Re: How do I unblock this file?"
- Previous message: David V: "RE: Authenticating to wrong DC"
- In reply to: RichardB: "Authenticating to wrong DC"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Mon, 15 Nov 2004 17:27:24 GMT
The best way to control which dc's a computer/user authenticates to is to
create sites in Active Directory Sites and Services based on subnets and
then by default authentication will first be attempted with domain
controllers in the site/subnet. I believe that a client/computer uses icmp
to find the closest domain controller by response time. You might check the
dns configuration of your clients and add the local domain controller to the
top of the list in the dns preferred servers in tcp/ip to see if that helps
at all. Running the support tool netdiag on a domain computer can show you
the dclist to make sure the domain computer knows where all the domain
controllers are just in case there is a problem with _srv records/dns or
such. You may also want to post in the win2000 or server active_directory
newsgroup. --- Steve
"RichardB" <RichardB@discussions.microsoft.com> wrote in message
news:D2331E27-2EA5-4B42-BF1E-2B14C438AD62@microsoft.com...
> Hello
>
> I have a seperate Domain Controller 600 miles away which most of our Users
> are authenticating to. How do you set it to use the GC here? I thought
> that by default that AD would look at the local Domain controller first.
>
>
> Thanks in advance
> RichardB
- Next message: Shenan Stanley: "Re: How do I unblock this file?"
- Previous message: David V: "RE: Authenticating to wrong DC"
- In reply to: RichardB: "Authenticating to wrong DC"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
