M
Moebius
We are implementing a two nodes Microsoft Cluster for SAP pourposes.
This cluster has to be Domain Controller independent, that is:
- Suposse that all the Domain Controllers in our Domain go down (or
Active Directory get corrupted). This way nobody could logon to the
Domain, but all of them -of course- could logon locally in their
machines.
- Imagine that under some extrange circumstances we also need to
reboot all the nodes in the SAP Cluster.
- Obiously if the MSCService account is Domain based (i.e.
Domain/Administrator) the service won't start at all and therefore the
cluster won't work. This way if one cluster node goes down, SAP goes
down.
The premise is: SAP cluster must work regardless of any other network
system (included Domain Controller)
So my question is: Is it possible to assign a local machine account
for Microsoft Cluster Service? If affirmative, to which security local
policies do we have to add to the local machine account?
Thanks in advance and best regards.
Javier Roldán
Computer Engineer
This cluster has to be Domain Controller independent, that is:
- Suposse that all the Domain Controllers in our Domain go down (or
Active Directory get corrupted). This way nobody could logon to the
Domain, but all of them -of course- could logon locally in their
machines.
- Imagine that under some extrange circumstances we also need to
reboot all the nodes in the SAP Cluster.
- Obiously if the MSCService account is Domain based (i.e.
Domain/Administrator) the service won't start at all and therefore the
cluster won't work. This way if one cluster node goes down, SAP goes
down.
The premise is: SAP cluster must work regardless of any other network
system (included Domain Controller)
So my question is: Is it possible to assign a local machine account
for Microsoft Cluster Service? If affirmative, to which security local
policies do we have to add to the local machine account?
Thanks in advance and best regards.
Javier Roldán
Computer Engineer