Other important factors in this scenario must be the
physical and logical security of the server housing the DC
role.
1. Will the server be securely locked away in the branches?
If not, do not deploy a DC.
2. Do you trust the file server admins to have physical
access to the server hosting the DC role?
3. Who administers the server that hosts the file and
DC roles? Are they also trusted?
When designing the branch office, I would always ask the
questions below, too:
1. Is a local DC required? i.e. what are the drawbacks if a
DC is not deployed?
2. Is logon/startup traffic over the WAN larger than
replication traffic over the WAN? If not, consider not deploying a local
DC.
3. Does a local DC offer redundancy in the event of a WAN
failure? If other apps are accessed over the WAN, then consider deploying the DC
at a central location and not at the branch.
hth,
neil
___________________________
Neil Ruston
Global Technology Infrastructure
Nomura International plc
Neil Ruston
Global Technology Infrastructure
Nomura International plc
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Tony Murray
Sent: 13 October 2005 01:12
To: [email protected]
Subject: RE: [ActiveDir] Virtual Servers in Branch Offices
Here's a link to a Microsoft document that covers what you
need to do to run a production DC on Virtual Server 2005.
Tony
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Noah Eiger
Sent: Thursday, 13 October 2005 11:30 a.m.
To: [email protected]
Subject: [ActiveDir] Virtual Servers in Branch Offices
Hi
-
Just to follow up on
the design thread.... Since I am placing DCs in small branch offices is there a
value in using Virtual Server 2005 to create separate virtual boxes (DC &
file server) running on the same physical box? Some users have administrative
access to the file server, and I'd love to keep them off the DCs. I am also
curious about optimal physical and virtual drive configurations for such a
box.
I reviewed the
thread here about Virtual Domain Controllers but it seemed to focus on using
them as backups. I am talking about production.
Any thoughts most
welcome.
--
nme
This communication, including any attachments, is confidential.
If
you are not the intended recipient, you should not read it -
please contact
me immediately, destroy it, and do not copy or
use any part of this
communication or disclose anything about it.
Thank You.
Please note that this communication does not designate an
information system for the purposes of the NZ Electronic Transactions Act
2002..
This e-mail message has been scanned for Viruses and Content and cleared by NetIQ MailMarshal at Gen-i
PLEASE READ: The information contained in this email is confidential and
intended for the named recipient(s) only. If you are not an intended
recipient of this email please notify the sender immediately and delete your
copy from your system. You must not copy, distribute or take any further
action in reliance on it. Email is not a secure method of communication and
Nomura International plc ('NIplc') will not, to the extent permitted by law,
accept responsibility or liability for (a) the accuracy or completeness of,
or (b) the presence of any virus, worm or similar malicious or disabling
code in, this message or any attachment(s) to it. If verification of this
email is sought then please request a hard copy. Unless otherwise stated
this email: (1) is not, and should not be treated or relied upon as,
investment research; (2) contains views or opinions that are solely those of
the author and do not necessarily represent those of NIplc; (3) is intended
for informational purposes only and is not a recommendation, solicitation or
offer to buy or sell securities or related financial instruments. NIplc
does not provide investment services to private customers. Authorised and
regulated by the Financial Services Authority. Registered in England
no. 1550505 VAT No. 447 2492 35. Registered Office: 1 St Martin's-le-Grand,
London, EC1A 4NP. A member of the Nomura group of companies.
