Implementing a Web member server to AD

[Clifford]

I've recently added a Win 2000 Adv. Server as PDC to a
new domain. I've also added a server to the domain as a
member configured to be a webserver.

Thus my questions : Should user accounts be created
locally on the member server(for FTP access to their
respective directories), and if so how does it replicate
to AD(or how does one set up the replication). Or should
the users be added locally to the member server AND as
users under AD users and computers?

When implementing a second webserver as member server,
how would I configure the PDC to allow replication of
data, user accounts, other relevant settings etc. between
the two servers and allow one to take over if the other
should fail?

Any help on such a senario will be much appreciated.

Thank you.

 

[Tim Hines, MCSA, MCSE]

You should not add the accounts locally. Local accounts do not replicate,
they only reside in the local account database. Accounts created on domain
controllers are the only accounts that are replicated. These accounts will
be replicated to every domain controller within the domain.
You should create your accounts on domain controllers. When you set
permissions in IIS you will be able to select the domain accounts and give
them permission to the resources.


--
--
Tim Hines, MCSE, MCSA
Windows 2000 Directory Services

=====================================================
When responding to posts, please "Reply to Group" via
your newsreader so that others may learn and benefit
from your issue.
=====================================================
This posting is provided "AS IS" with no warranties, and confers no rights.

 

[Clifford]

Thank you for your reply...

Does this mean that the web server will have to be
promoted to a DC as well? At this point in time it is
just a member server, and cannot open the AD users and
computers snap-in.

Thank you.