simple setup q's

  • Thread starter Thread starter Greg
  • Start date Start date
G

Greg

I am looking into installing AD on our two load-balanced web servers to
accomplish the following:

1) replication of website content
2) replication of users

Is it as simple as making each a domain controller with the same domain and
then setting up the replication?
 
I am looking into installing AD on our two load-balanced web servers to
accomplish the following:

1) replication of website content
2) replication of users

Is it as simple as making each a domain controller with the same domain and
then setting up the replication?
Click to expand...

DCs from the same domain replicate AD, if that is what you are asking.

DCs do not replicate their "general" file space. You can however replicate
that using DFS even if they are not DCs.

BUT, it is unusual (generally not the most secure solution) to
expose a DC on a public web server (the Internet) if that is what
you intend.

Usually a DC would be "hidden behind" the web servers so that
the web servers could use the AD accounts database but not
expose it.

What are you real intentions? Maybe we can help you figure
out a design.
 
I'll explain a little further:
- my two web servers are public (not intranet, etc...), they are in the same
geographic location and ISP, but on separate networks.
- I have identical file structure on each, and instead of having to ftp
content to both servers, have DFS do the replication work? We also have a
small content management app and the developer has built a service to do the
replication of its files, but I would like to use AD for that as well.
- as an added bonus: replication of user/groups to keep the file/dir
permissions the same.

Just looking for the easiest way to accomplish this with minimal
disruption...

Also, I have a third server, different ISP, different geographic location,
hosting our mail server. I've found a solution to load-balance it using DFS
to replicate the mail stores. When I decide where to host my backup mail
server, I'd like to implement the replication there as well...
 
Greg said:
I'll explain a little further:
- my two web servers are public (not intranet, etc...), they are in the same
geographic location and ISP, but on separate networks.
- I have identical file structure on each, and instead of having to ftp
content to both servers, have DFS do the replication work? We also have a
small content management app and the developer has built a service to do the
replication of its files, but I would like to use AD for that as well.
- as an added bonus: replication of user/groups to keep the file/dir
permissions the same.
Click to expand...

DFS doesn't do automatic replication unless the machines are in a domain
(Domain based DFS with auto enabled.)

AD doesn't replicate files (other than SysVol). It allows the DFS to be
setup
that way. (Ok, technically DFS even replicates SysVol but I didn't want
anyone to confuse you with an irrelevant arguement about AD replicating it.)
Just looking for the easiest way to accomplish this with minimal
disruption...
Click to expand...

Robocopy (or similar). DFS is overkill here, it is actually not focused on
"replication" but on fault tolerance for SMB access which you don't seem
to need.
Also, I have a third server, different ISP, different geographic location,
hosting our mail server. I've found a solution to load-balance it using DFS
to replicate the mail stores. When I decide where to host my backup mail
server, I'd like to implement the replication there as well...
Click to expand...

I believe you may misunderstand DFS.

--
Herb Martin
 
Greg,

The bottom line here is that you don't want to make any of your web servers
serve as domain controllers. You need dedicated hardware for that. If you
have VPNs between the machines, you could simply schedule a robocopy job
which would sync things up.

If you're going to take the DFS/FRS route, you're going to want a DC at both
sites for redundancy, and the links between them are going to need to be
fairly fast.

--
--
Brian Desmond
Windows Server MVP
(e-mail address removed)12.il.us

Http://www.briandesmond.com


Greg said:
I'll explain a little further:
- my two web servers are public (not intranet, etc...), they are in the same
geographic location and ISP, but on separate networks.
- I have identical file structure on each, and instead of having to ftp
content to both servers, have DFS do the replication work? We also have a
small content management app and the developer has built a service to do the
replication of its files, but I would like to use AD for that as well.
- as an added bonus: replication of user/groups to keep the file/dir
permissions the same.

Just looking for the easiest way to accomplish this with minimal
disruption...

Also, I have a third server, different ISP, different geographic location,
hosting our mail server. I've found a solution to load-balance it using DFS
to replicate the mail stores. When I decide where to host my backup mail
server, I'd like to implement the replication there as well...
Click to expand...
 
Back
Top