definitely give them an OU and I'd also urgently suggest
you don't make the machine in that remote office a DC at all
=> first of all it's not required for 15 folks - you'll
need it for other things such as file/print (they should
easily be able to authenticate to your main office; assuming NW connectivity -
which you'd also need to setup replication...)
=> secondly, it's much more secure, as you will likely
not have much physical security in an office of 15 people and if you're using
the one box for everything it's unsecure from a delegation
perspective
/Guido
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Jeff Kraus
Sent: Monday, January 31, 2005 7:19 PM
To: [email protected]
Subject: [ActiveDir] new 2003 domain controller in windows 200 forest.
Hi,
we are setting up a
remote office if about 15 people that will be linked by a
vpn.
we are buying new
servers that have win2003 on them.
I have a coupe
of questions,I hope you would indulge me with your opinions.
1: we are planning
to upgrade our headquarters the 2003 in about 3 -4 months. can we setup the
new server with 2003 as domain controllers so we won't have to upgrade them
later ?
if so anything special we need
to do ? IE: forest prep ?
2: We have
a raging debate weather to set them up as a domain or a
org unit in their own site. we have a part time adiminstrator there htat we need
to give right to for day to day admin work.
thanks for your
help.
Jeff Kraus
Network Manger
NIC Holding Corp.
25 Melville Park Rd
Melville NY, 11747
Voice: 631.753.4272
Fax:
631.753.4305
