Replicating an AD over a VPN to another domain

  • Thread starter Thread starter M. vd Kolk
  • Start date Start date
M

M. vd Kolk

First off we got a VPN connection running from one company to our own.
Is it possible to replicate the AD over a VPN when the connection is
made, the domain is known. (so available in the Network itself as a
Virtual one) if so then what do I need to think of when trying this.

So basically when seen from just one LAN I have 2 seperate domains
running into 1 LAN. the two DC's I want to replicate with eachother.
is there a way to do this?

then a question not really fitting in here but Ill ask it all the
same, how can one use Exchange 2000 over a VPN to create a sort of..
internal mail system over the VPN so it 'seems' to be an internal
message system rather then using the SMTP bit of Exchange. I've read
some about using the IMS for this however the white papers refer to
Exchange 5.5 for this. Is that still in effect to Exchange 2000.

Thnx in advance..
 
It all depends on what type of VPN connection is. If you have two VPN
routers connection your two networks then I see no problem with setting up
an additional DC in the remote site for existing domain and replicate. Also
the usage of exchange server is possible after you setup a VPN connection,
but your questions are not clear enough for me to understand then, so if you
can be more specific and clear on your issues I could provide more help.

--
Regards

Matjaz Ladava, MCSE (NT4 & 2000), Windows MVP
(e-mail address removed)
http://ladava.com
 
Matjaz Ladava said:
It all depends on what type of VPN connection is. If you have two VPN
routers connection your two networks then I see no problem with setting up
an additional DC in the remote site for existing domain and replicate. Also
the usage of exchange server is possible after you setup a VPN connection,
but your questions are not clear enough for me to understand then, so if you
can be more specific and clear on your issues I could provide more help.

--
Regards

Matjaz Ladava, MCSE (NT4 & 2000), Windows MVP
(e-mail address removed)
http://ladava.com
Click to expand...

There isn't really a problem, its more that I'd like to know what Im
actually up against and what options I have.

Type is IPSec, so basically from router to router. However, if I would
have 2 domains, both with different names, get them to trust eachother
and then replicate. Is that an option and if so what do I need to
think about?

the question about exchange is basically to ge Exchange to take a role
in the organization as internal message system. So internal in an
external way :P, so when a VPN is made and the connection is running,
domains are known and trusted. is it possible to use exchange as
internal mail rather then using it with the SMTP protocol.

I already read that Exchange could be used if both organization names
would be the same (so the exchange organization names, First
Organization for instance)
although these were based on an Exchange 5.5 system.

Hope this makes it more clear :)
 
Hi,

sorry for responding you a little late. If you have fully routed network
between the two locations, then you can have two separate domains, but you
didn't mention if they are in the same forestor not. If they are not, then
there is not much that would replicate between them. They can each have its
own Exchange server, but because this are two separate forests, you need to
use MX records in DNS server so that each exchange server can send mail to
each other. If you need to have one global address list of both domains, the
you need to consider on of the technology for syncing two separate AD's
(Microsoft Identity Information Server 2003, Simple Sync from CPS
systems....)

--
Regards

Matjaz Ladava, MCSE, MCSA, MVP
Microsoft MVP - Active Directory

(e-mail address removed)
http://ladava.com
 
Back
Top