AD replication question

  • Thread starter Thread starter Carl Sagar
  • Start date Start date
C

Carl Sagar

I have two domain controllers, one in the US and the other in another
country. The networks are joined using a VPN, and some users on each end of
the network need to access files on the remote DC. The DCs do not share a
namespace but need to replicate AD information with each other so that they
are aware of user accounts in each domain and that security permissions can
be applied to the shared files. I know I can use the AD Sites and Services
Snap In to configure replication between sites but I'm a little sketchy on
the details of how I should set this up, and if I'll need to set up a DNS
server that's accessible by both domains to do so. If anyone could give me
a quick over view or some resources to read through it would be greatly
appreciated. Thank you!
 
I assume they are different domains in different forests from your description? In
that case they would not replicate AD info but you could create a trust between
domains to allow users in one domain to gain access to resources in another domain.
You would have to configure two explicit trusts for each way. Sites and Services
simply lets you segment your existing domain/forest by subnets to schedule
replication across slow and unreliable links and have users use domain controllers in
their site for initial logon attempts. To set up interferes trusts you need netbios
name resolution and the best way would be have wins servers on each domain and have
them replicate with the opposite domain. See the links below on W2K trusts. ---
Steve

http://support.microsoft.com/default.aspx?scid=kb;en-us;309682
http://www.microsoft.com/windows200...dows2000/en/advanced/help/sag_AD_UnTrusts.htm
 
Back
Top