This
seems a little obvious so I may have misunderstood your scenario, nonetheless
-
--
Dean Wells
MSEtechnology
* Email: dwells@msetechnology.com
http://msetechnology.com
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Kamlesh Parmar
Sent: Saturday, September 10, 2005 12:25 PM
To: [email protected]
Subject: [ActiveDir] Restricting machine to specific DC for domain join
Dear All,
At one of the locations, firewall restricts port 139, 445 towards
other locations.
And we are mass migrating computers from this location to our domain.
And We know that, normal 2k/XP machine when asked to join domain, will run
LDAP query _ldap._tcp.dc._msdcs.domainname
will go to first DC of returned from the result, and try to
create account there.
And if the first DC of the result, is remote DC, this attempts is thwarted
by firewall, as client can't make initial connection to remote DC's IPC$
Can we do something about this,
Like making sure that for DC Join process, clients go to specific DC
only.?
Regards,
Kamlesh
--
~~~~~~~~~~~~~~~~~~~~~~~~~~~
"Fortune and Love befriend the bold"
~~~~~~~~~~~~~~~~~~~~~~~~~~~
--
~~~~~~~~~~~~~~~~~~~~~~~~~~~
"Fortune and Love befriend the bold"
~~~~~~~~~~~~~~~~~~~~~~~~~~~
