Hi all,
I'm faced with a remote site that has decided to spin up their first server. They're totally disconnected from the enterprise intranetwork; Any user who needs access to company resources currently uses a software VPN client.
At some point in the far-off future, this site will become part of our global network. Our global AD consists of a dedicated forest root with three child domains.
Given this information, what recommendations would you make to this site to minimize our integration pain down the road? Right now, the workstations are not in a domain. I'm tempted to tell them to NOT create a forest/domain and to just stay in workgroup mode. If they were to spin up their own DC and join all the workstations, would we have to go through a full domain migration when the time comes? There's always the option of leaving them alone and creating a cross-forest trust, but I think our four domains are already too many and I don't want a fifth!
Thx,
RM
