Follow along with the video below to see how to install our site as a web app on your home screen.
Note: This feature may not be available in some browsers.
dbwillis said:try Microsoft.com?
Ive gotten some great tips from http://www.petri.co.il/ (namely the ones that give additional info in AD users and computers)
Child domains are a good way to segment out something that needs a different set of standards from the rest of the organization. I would suggest getting organized. Decide what your "ideal" structure is. Decide where you want to place user, computers, etc in the directory. Keep a consistant structure. Limit who can modify that structure. Here's one way that I have done this:dx2 said:Well here is the deal....we are creating a "child" domain on an open academic network. However our child domain needs much more restrictive policies than the typical university hospital computers.
The AD we are going to draw objects from is a good couple thousand objects, very loosely organized.
Any tips on implementing/going this child domain route? or better ways?
(root)
>Users
>Computers
>(etc)
>Departments
>(Department 1)
>Users
>Computers
>(Department 2)
>Users
>Computers
>(etc)
Yes. Where that point is must be decided by the business/administrators. There will be some middle ground though. The main goal should be standardization. Once that standard is defined, everything else should fall into place.dx2 said:Is there any point that a directory structure can become to deep that it makes management a chore or impacts performance?
(root)
>Users
>Computers
>(etc)
>Sites
>(Site 1)
>Users
>Computers
>(Site 2)
>Users
>Computers
>(etc)
There are some things that are a domain-wide settings. Password policy is one of them. You can only have one password policy per domain. So, if you need to implement multiple password policies, then the only way to accomplish this is to create another domain in the forest or use a third party tool.Dan_D said:I have always done this on a single domain. Through AD you can group seperate computers in another organizational unit and set their policies and what not seperately. A Child domain isn't necessary in many cases.
Dan_D said:I have always done this on a single domain. Through AD you can group seperate computers in another organizational unit and set their policies and what not seperately. A Child domain isn't necessary in many cases.
You don't need DNS in the ER... (j/k)dx2 said:...and having the dns stop working in the ER.