Ace Fekay [MVP]
03-16-2004, 04:35 AM
In news:dc3601c40b09$070d7470$a401280a@phx.gbl,
The Head Mushroom <theheadmushroom@greatlakes.nsw.gov.au> posted their
thoughts, then I offered mine
> We have 3 domain controllers in our main site. We have 1
> domain controller in our remote site, which is connected
> to our main site by a 128k ISDN line.
>
> A large portion of the workstations in our main site are
> being authenticated by the 1 domain controller in the
> remote site. We have had the high-priced boffins in to
> look at it, their response has been "It shouldnt be
> happening, so as far as we are concerned, it isn't".
>
> The only problem is that it is happening (hope my boss
> didn't pay their bill!!)
>
> Can anyone give me some ideas about how to go about
> troubleshooting this one?
Need more info to troubleshoot this one....
What OS is AD on?
Seems they're querying for the GC in the remote site and not the local Site.
Are there GCs in the local site?
Are your sites defined properly with their IP subnet objects and associated
Sites? If so, are there any errors happening in the Event Viewer (post the
Event ID #s if so please)? When you created your Sites, did you move the
servers into their appropriate Site?
Did you delete the Default-First-Site-Name?
Are the SRV records present in DNS in accordance to the actual Site names
and the GC reference in your Sites?
Are/Is the local GC multihomed?
Can you post:
1. ipconfig /all of 2 of your DCs in the local site
2. ipconfig /all of the DC in the remote Site
3. The AD domain name (as it shows in ADUC)
Have you run a dcdiag /v on your DCs? If not, can you do so and post that as
well?
How much did those guys charge you? (curiousity...)
Here are some articles concerning Sites and optimization:
Managing Sites:
http://www.microsoft.com/technet/prodtechnol/windows2000serv/technologies/activedirectory/maintain/opsguide/part1/adogd06.mspx
Step-by-Step Guide to Active Directory Sites and Services:
http://www.microsoft.com/technet/prodtechnol/windows2000serv/technologies/activedirectory/howto/adsites.mspx
306602 - How to Optimize the Location of a DC or GC That Resides Outside of
a Client's Site [Includes info LdapIpAddress and GcIpAddress]:
http://support.microsoft.com/?id=306602
--
Regards,
Ace
Please direct all replies to the newsgroup so all can benefit.
This posting is provided "AS-IS" with no warranties and confers no
rights.
Ace Fekay, MCSE 2000, MCSE+I, MCSA, MCT, MVP
Microsoft Windows MVP - Active Directory
--
=================================
The Head Mushroom <theheadmushroom@greatlakes.nsw.gov.au> posted their
thoughts, then I offered mine
> We have 3 domain controllers in our main site. We have 1
> domain controller in our remote site, which is connected
> to our main site by a 128k ISDN line.
>
> A large portion of the workstations in our main site are
> being authenticated by the 1 domain controller in the
> remote site. We have had the high-priced boffins in to
> look at it, their response has been "It shouldnt be
> happening, so as far as we are concerned, it isn't".
>
> The only problem is that it is happening (hope my boss
> didn't pay their bill!!)
>
> Can anyone give me some ideas about how to go about
> troubleshooting this one?
Need more info to troubleshoot this one....
What OS is AD on?
Seems they're querying for the GC in the remote site and not the local Site.
Are there GCs in the local site?
Are your sites defined properly with their IP subnet objects and associated
Sites? If so, are there any errors happening in the Event Viewer (post the
Event ID #s if so please)? When you created your Sites, did you move the
servers into their appropriate Site?
Did you delete the Default-First-Site-Name?
Are the SRV records present in DNS in accordance to the actual Site names
and the GC reference in your Sites?
Are/Is the local GC multihomed?
Can you post:
1. ipconfig /all of 2 of your DCs in the local site
2. ipconfig /all of the DC in the remote Site
3. The AD domain name (as it shows in ADUC)
Have you run a dcdiag /v on your DCs? If not, can you do so and post that as
well?
How much did those guys charge you? (curiousity...)
Here are some articles concerning Sites and optimization:
Managing Sites:
http://www.microsoft.com/technet/prodtechnol/windows2000serv/technologies/activedirectory/maintain/opsguide/part1/adogd06.mspx
Step-by-Step Guide to Active Directory Sites and Services:
http://www.microsoft.com/technet/prodtechnol/windows2000serv/technologies/activedirectory/howto/adsites.mspx
306602 - How to Optimize the Location of a DC or GC That Resides Outside of
a Client's Site [Includes info LdapIpAddress and GcIpAddress]:
http://support.microsoft.com/?id=306602
--
Regards,
Ace
Please direct all replies to the newsgroup so all can benefit.
This posting is provided "AS-IS" with no warranties and confers no
rights.
Ace Fekay, MCSE 2000, MCSE+I, MCSA, MCT, MVP
Microsoft Windows MVP - Active Directory
--
=================================