H
harryg13
Hello Everyone, we have several sites, stores and offices and i would like an opinion about the domain controller/active directory infra-structuring.
I have made a quick sketch in order to explain the current architecture which is just a failure.
We have 1 domain controller server at Azure as VM, for our discussion the domain will be contoso.com . Every site, office or store is "conected" with the azure via site 2 site vpn using RRAS services. That's how clients and domain controller "talks". The problem is that we have several network disconnects(xDSL internet ) and the clients of course lose connection with the DC. I want to create a sturdy enviroment that in case of internet disconection, the clients will operate normally. Specifically the exact problem is that clients run several services with domain account so in case of disconnect these services have problem to start/restart because cannot authenticate.
How i can solve this problem? What do you recommend me to do? The domain controller has only DNS/AD services, no file services or anything else critical. I need the services that run with domain account to be functional in case of a network/vpn failure or disconnection.
total clients approx. 150
total physical sites approx. 40
every site has a dedicated server ready for anything.
Forgot to mention that every site is connected with each other, using another site to site vpn (with zyxel routers)
Thanks in advance!
Continue reading...
I have made a quick sketch in order to explain the current architecture which is just a failure.
We have 1 domain controller server at Azure as VM, for our discussion the domain will be contoso.com . Every site, office or store is "conected" with the azure via site 2 site vpn using RRAS services. That's how clients and domain controller "talks". The problem is that we have several network disconnects(xDSL internet ) and the clients of course lose connection with the DC. I want to create a sturdy enviroment that in case of internet disconection, the clients will operate normally. Specifically the exact problem is that clients run several services with domain account so in case of disconnect these services have problem to start/restart because cannot authenticate.
How i can solve this problem? What do you recommend me to do? The domain controller has only DNS/AD services, no file services or anything else critical. I need the services that run with domain account to be functional in case of a network/vpn failure or disconnection.
total clients approx. 150
total physical sites approx. 40
every site has a dedicated server ready for anything.
Forgot to mention that every site is connected with each other, using another site to site vpn (with zyxel routers)
Thanks in advance!
Continue reading...