RE: [ActiveDir] Windows 2000 logon

[Jorge de Almeida Pinto]

Title: Message

The grouping of the PCs will be handled by the DNS server. This is accomplished by DNS priorities and weights. If the priority and the weight of both DCs are the same than the load will be devided eventually amongst the 2 DCs.   DNS Priority: I like to call this COST because the lowest value takes precedence of the higher one. This simply means: Always take the lowest value and only use the higher when the DC with the lowest value does not respond (in other words: is dead)   DNS Weight: The servers with higher values are "stronger" and thus can handle more authentication requests. E.g. DC1 has w. of 40 and DC2 has w. of 60. The end result will be that DC1 handles 40% of the Auth.reqs. and DC2 handles 40% of the Auth.reqs.   One of the examples to use these is to offload the PDC emulator if needed   As some other people already said it is not possible (at least as I know of) to assign PCs 1-10 to DC1 and PCs 11-20 to DC2. The only two accomplish that is by defining separate sites with accompanying sites   greetz Jorge From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Tashildar, Dinesh (Cognizant) Sent: maandag 31 januari 2005 10:10 To: ActiveDir@mail.activedir.org Subject: RE: [ActiveDir] Windows 2000 logon Got it... but this is fine, in case if you have single DC in a site. Lets say, if I have 2 DC in a site and I wanted group of PC should get authentication from DC1 and other from DC2 then how can I tell PC's ?   Note : I know we can achieve this by creating a separate sites for single DC and assign subnet's to it. I am looking for some other solution, which will not disturb sites and subnet settings. From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Mohammed Tantawi Sent: Monday, January 31, 2005 2:31 PM To: ActiveDir@mail.activedir.org Subject: RE: [ActiveDir] Windows 2000 logon As far as I know , the authentication Method done with using DNS Server ,   I mean , when you type your user name & password , it take it and it ask the DNS and tell him  the following ( ok, DNS, I have this user name & password from this PC in the Network , Please I want to validate the user name & password for this , then DNS Reply .   DNS reply : ok pc, I have here in My records in the Zone , this Server is making the authentaction , Take His AP-Address and take to him . PC :             ok, DNS , please give me this IP-Address. DNS:           ok, IP-address is          192.168.1.1 PC:              ok, thanks , I will take to this Server now.   PC – To- Server :           dear Server, Please  I have this user name & Password , Please Authenticate it .     So this is the Process as I know ,   So , if you change the IP-Address of the server which is making Kerbroes Service , I think you will be able to make it, Please tell me if this enough for you .     From: Yakir, Ronen [mailto:[EMAIL PROTECTED] Sent: 21 ذو الحجة, 1425 11:47 ص To: ActiveDir@mail.activedir.org Subject: RE: [ActiveDir] Windows 2000 logon   Hi   As far As I know, there is no way to force a pc to authenticate with a specific server.         Ronen Yakir Customer Support Engineer -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Mohammed Tantawi Sent: Monday, January 31, 2005 8:11 AM To: ActiveDir@mail.activedir.org Subject: RE: [ActiveDir] Windows 2000 logon What do you mean ? Can you explain More details to help you   Mohammed     From: Tashildar, Dinesh (Cognizant) [mailto:[EMAIL PROTECTED] Sent: 21 ذو الحجة, 1425 08:44 ص To: ActiveDir@mail.activedir.org Subject: [ActiveDir] Windows 2000 logon   Hi, Does anyone know how to force a Windows 2000 Pro PC to logon to a specific Windows 2000 Server rather than just using any old server that can authenticate? I have tried by changing LOGONSERVER environment variable to force logon to DC, but its not working. Regards, Dinesh Tashildar This e-mail and any attachment is for authorised use by the intended recipient(s) only. It may contain proprietary material, confidential information and/or be subject to legal privilege. It should not be copied, disclosed to, retained or used by, any other party. If you are not an intended recipient then please promptly delete this e-mail and any attachment and all copies and inform the sender. Thank you.