Active Directory Network Layout

[RiDDLeRThC]

I have a quick question that I can't find an answer to searching around on google.

We have a case where we need to stand up and replicate a current domain without access to all existing domain controllers. We do have access to one of them. Is this kind of replication supported? I'm guessing it would at least give us a problem if we tried to remove the domain controller at Data Center 1.

 

[Shambler]

Add the New DC to the same AD Site as the DC it has a connection to?

 

[RiDDLeRThC]

Yes, its all the same AD site.


edit: wait maybe i don't understand the question.

 

[Metraon]

Are you trying to make a trust ?

http://www.learnmsexchange.com/wind...-directory-trust-types-in-windows-server-2008

 

[RiDDLeRThC]

No trust, its all the same "site" just another location. We are struggling to get a tunnel setup with the current provider in Data Center 1.

 

[Eickst]

Your site layout in AD should resemble your physical network layout.

You should have a site for datacenter 1, a site for datacenter 2, and a site for location 1. Put the correct subnets in each site. Create site links for datacenter 1 to location 1, and for location 1 to datacenter 2. AD will set up the appropriate replication connections.

Having them all in the same site means that datacenter 2 may want to replicate to datacenter 1 and thats just a wasted hop and wasted bandwidth.