IS different for
each company
Cheers
#JORGE#
-Original Message-
From: [EMAIL PROTECTED]
To: ActiveDir@mail.activedir.org
Sent: 5/22/2005 7:05 PM
Subject: RE: [ActiveDir] AD DR - replication lag siteWhy?
1.
I assume almost everyone has an insurance policy for their house if it
burns
,
Guido
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of mike kline
Sent: Montag, 23. Mai 2005 13:38
To: ActiveDir@mail.activedir.org
Subject: Re: [ActiveDir] AD DR - replication lag siteWhy?
haha, ok so you MVPs also have these special powers.
Very
@mail.activedir.org
Subject: RE: [ActiveDir] AD DR - replication lag siteWhy?
oh, gee, I'm too late - but I had a great weekend ;-))
I'd have to say (and all the posts show themselves) that there is no single
right or wrong answers to lag sites. It's one building block to mastering AD
DR and may very
and rebuild the DC
from scratch
Cheers,
#JORGE#
-Original Message-
From: [EMAIL PROTECTED]
To: ActiveDir@mail.activedir.org
Sent: 5/22/2005 1:15 AM
Subject: RE: [ActiveDir] AD DR - replication lag siteWhy?
Reread it Deji, I really am not agreeing with it. I noted that it might
be
something
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Jorge de Almeida
Pinto
Sent: Sunday, May 22, 2005 5:41 AM
To: 'joe '; '[EMAIL PROTECTED] '; 'ActiveDir@mail.activedir.org '
Subject: RE: [ActiveDir] AD DR - replication lag siteWhy?
Hi,
In my opinion
purpose?
joe
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Dan Holme
Sent: Sunday, May 22, 2005 9:49 AM
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] AD DR - replication lag siteWhy?
I think Jorge summarized the issue quite well
#JORGE#
-Original Message-
From: [EMAIL PROTECTED]
To: ActiveDir@mail.activedir.org
Sent: 5/22/2005 7:05 PM
Subject: RE: [ActiveDir] AD DR - replication lag siteWhy?
1.
I assume almost everyone has an insurance policy for their house if it
burns down.
In the US, you can't get
of joe
Sent: Fri 5/20/2005 10:07 PM
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] AD DR - replication lag siteWhy?
I would tend to agree with what David is saying from what I have seen of lag
sites as well.
Not many people, relatively, doing it, those that are are likely to be doing
I read Joe's comments as not creating a lag site per-se, but using virtual
DC's which are periodically saved (I'll refrain from saying backed up since
it's not a backup, as was recently discussed) in order to perform a
Forest-wide recovery. I don't think he was referring to recovery of a few
/willhack4food
_
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Rick Kingslan
Sent: Friday, May 20, 2005 3:49 PM
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] AD DR - replication lag siteWhy?
Todd,
With all due respect, I think there are more people doing
Title: RE: [ActiveDir] AD DR - replication lag siteWhy?
Thanks Rick,
I didn't think it to strong. And took no offense.
As most of you know, I am a buy guy.
When I reviewed AD back when, I new that we were in trouble if we had any accidents with administration. We allow for delegated
-Original Message-
From: David Adner
To: ActiveDir@mail.activedir.org
Sent: 5/21/2005 5:08 AM
Subject: RE: [ActiveDir] AD DR - replication lag siteWhy?
I read Joe's comments as not creating a lag site per-se, but using
virtual
DC's which are periodically saved (I'll refrain from saying
, 2005 3:45 AM
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] AD DR - replication lag siteWhy?
Joe, you pretty much agreed with the lag site proposition towards the end of
your piece. Whether you virtualize it, put it is a different physical
location or just put it on a piece
Correct.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of David Adner
Sent: Saturday, May 21, 2005 5:08 AM
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] AD DR - replication lag siteWhy?
I read Joe's comments as not creating a lag site per
PROTECTED] On Behalf Of Dan Holme
Sent: Thursday, May 19, 2005 16:16
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] AD DR - replication lag siteWhy?
Two more notes on this issue:
1) THIRD PARTY AD RESTORE TOOLS. Sounds like it's clear, now, WHY lag sites
are so popular. Yes
PROTECTED]
Sent: Thu 5/19/2005 11:12 AM
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] AD DR - replication lag siteWhy not?
Todd -
I personally don't have a problem with Recovery Manager.
That being said - Last I checked, Microsoft still didn't allow it as a
SUPPORTABLE solution
:16 AM
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] AD DR - replication lag siteWhy?
Two more notes on this issue:
1) THIRD PARTY AD RESTORE TOOLS. Sounds like it's clear, now, WHY lag sites
are so popular. Yes, there are third party products (particularly Quest
Recovery
PROTECTED]
Sent: Thu 5/19/2005 10:16 AM
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] AD DR - replication lag siteWhy?
Two more notes on this issue:
1) THIRD PARTY AD RESTORE TOOLS. Sounds like it's clear, now, WHY lag sites
are so popular. Yes, there are third party
PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Myrick, Todd
(NIH/CC/DNA)
Sent: Friday, May 20, 2005 11:51 AM
To: ActiveDir@mail.activedir.org; ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] AD DR - replication lag siteWhy not?
Disagree Rick,
MS changed the verbiage in the Q
@mail.activedir.org; ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] AD DR - replication lag siteWhy?
I disagree that Lag sites are popular, maybe with you and at AD conferences
as a session. I tend to avoid those sessions.
To all those considering this as a viable solution, why
_
From: Dan Holme [mailto:[EMAIL PROTECTED]
Sent: Thu 5/19/2005 10:16 AM
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] AD DR - replication lag siteWhy?
Two more notes on this issue:
1) THIRD PARTY AD RESTORE TOOLS. Sounds like it's clear, now, WHY lag sites
are so
@mail.activedir.org
Subject: RE: [ActiveDir] AD DR - replication lag siteWhy?
Todd,
With all due respect, I think there are more people doing
this than you think. You arent using a Lag Site, so its
whacky. Your opinion, so youre entitled to it.
PSS blessed our implementation, BTW. If youd
: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Myrick, Todd
(NIH/CC/DNA)
Sent: Friday, May 20, 2005 11:51 AM
To: ActiveDir@mail.activedir.org; ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] AD DR - replication lag siteWhy not?
Disagree Rick,
MS changed
Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Jorge de Almeida
Pinto
Sent: Friday, May 20, 2005 8:43 AM
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] AD DR - replication lag siteWhy?
You are correct there are free tools to do a restore of objects
:[EMAIL PROTECTED] On Behalf Of David Adner
Sent: Friday, May 20, 2005 5:24 PM
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] AD DR - replication lag siteWhy?
Using my non-scientific personal observations, of the last 50 or so
customers I've been to I believe only 3 had lag sites
Rick Kingslan
Envoyé : mercredi 18 mai 2005 16:44
À : ActiveDir@mail.activedir.org
Objet : RE: [ActiveDir] AD DR - replication lag site
(Caveat - I didn't go read the article fairly certain what this is
about)
I've implemented something quite similar to this in my environment - except I
did
Hello,
Thanks for this interesting tips, but i didn't really understand the
behind the techno of a lag site in case of just a deletion of an
entire OU with many objects.
For example,if I have AD 2003 domain with 2 sites:
Site A has 2 DCs
Site B has one DC and is the lag site
Between 2 sites, i
.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of TIROA YANN
Sent: Wednesday, May 18, 2005 11:46 PM
To: [EMAIL PROTECTED]; ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] AD DR - replication lag site
Hello,
Thanks for this interesting tips, but i didn't
, then the DC will fail to authenticate and
replicate with other DCs.
neil
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Dan Holme
Sent: 18 May 2005 23:12
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] AD DR - replication lag site
I have several
Envoyé : jeudi 19 mai 2005 08:51
À : ActiveDir@mail.activedir.org
Objet : RE: [ActiveDir] AD DR - replication lag site
The major issue is the SPEED of recovery. With a lag site, you ONLY have to do
an authoritative restore (NTDSUTIL).
Without a lag site, you must first restore the AD from backup
@mail.activedir.org
Subject: RE: [ActiveDir] AD DR - replication lag site
Hello,
I must apologize, but i'm a little bit confused. You said With a lag site, you
ONLY have to do an authoritative restore (NTDSUTIL).
Do you mean if i delete my OU in DC in site A, all i have to do is do an
autoritative
.
43, Bd du 11 Novembre 1918.
69622 Villeurbanne Cedex.
-Message d'origine-
De : [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] De la part de Ruston, Neil
Envoyé : jeudi 19 mai 2005 10:09
À : 'ActiveDir@mail.activedir.org'
Objet : RE: [ActiveDir] AD DR - replication lag site
If the deletion
[mailto:[EMAIL PROTECTED]
Sent: Thursday, May 19, 2005 4:20 AM
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] AD DR - replication lag site
Neil,
I now understand... I'm a new man by now thanks to the mysterious lag site
that have been revealed to me :-))
Thanks a lot for your explanations
this earlier, and it's a good note!
Dan
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Myrick, Todd
(NIH/CC/DNA)
Sent: Thursday, May 19, 2005 6:34 AM
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] AD DR - replication lag siteWhy
To: 'ActiveDir@mail.activedir.org'
Subject: RE: [ActiveDir] AD DR - replication lag site
If the deletion occurs on DC1, then a DC (DC2) in the lag site will not receive
the deletion immediately. You therefore have a window of opportunity in which
the deletion may be 'undone'.
The deleted object may
Sent: Thursday, May 19, 2005 2:46 AM
To: 'ActiveDir@mail.activedir.org'
Subject: RE: [ActiveDir] AD DR - replication lag site
That solution is fine until the machine is rebooted and netlogon starts
again
:)
Why not change the DNS SRV record priorities/weights? Or alternatively,
place
the DC
is going on here.
-rtk
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of TIROA YANN
Sent: Thursday, May 19, 2005 2:54 AM
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] AD DR - replication lag site
Hello,
I must apologize, but i'm a little bit
or intensive to use.
But, that's just me.
-rtk
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Myrick, Todd
(NIH/CC/DNA)
Sent: Thursday, May 19, 2005 8:34 AM
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] AD DR - replication lag siteWhy
@mail.activedir.org
Subject: RE: [ActiveDir] AD DR - replication lag site
For those of you that are a MOM environment and have created a lag site, how
are you overcoming the replication latency messages?
:m:dsm:cci:mvp
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf
@mail.activedir.org
Subject: RE: [ActiveDir] AD DR - replication lag site
Just two things...
Disable Netlogon. If it's disabled as a policy or by going to services and
changing the service properties, restarting on reboot won't be an issue.
Disabled is disabled, regardless.
As to DNS records, I
@mail.activedir.org'
Subject: RE: [ActiveDir] AD DR - replication lag site
I guess I find my solution more elegant and cheaper to manage/maintain. I
try to avoid implementing changes to one DC but not others. The TCO tends to
go thru the roof :)
DCs placed in a separate site and/or configured with different
in
the data center.
-rtk
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Ruston, Neil
Sent: Thursday, May 19, 2005 11:01 AM
To: 'ActiveDir@mail.activedir.org'
Subject: RE: [ActiveDir] AD DR - replication lag site
I guess I find my solution more elegant
, 2005 11:37 AM
To: ActiveDir@mail.activedir.org
Subject: Re: [ActiveDir] AD DR - replication lag site
Not sure if this is what you need. In any case, the GPO setting
related to disabling Generic SRV record registrations and SRV
weighting can be found under the Computer Configuration Node of a GPO
] On Behalf Of Rick Kingslan
Sent: Thursday, May 19, 2005 11:15 AM
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] AD DR - replication lag site
Marcus,
I kill off the specific rules on those servers. If I'm not interested in a
particular message, it's gone.
-rtk
-Original Message
: Thursday, May 19, 2005 10:04 AM
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] AD DR - replication lag site
Killing off the rules stops those particular DCs from running the latency
rules... but how do you overcome the latency rules from any DC not in a lag
site with connection objects
(Caveat - I didn't go read the article fairly certain what this is
about)
I've implemented something quite similar to this in my environment - except
I did it quite a bit differently - and, I think that it's a very viable DR
and near-line recovery solution.
What we did in our Enterprise was
I have several large clients who are going this direction and are in
testing right now. Things look quite good.
I had read somewhere that an alternative approach to preventing
authentication to the 'lag' DCs was to stop the Netlogon service. The
approach of removing DNS records seems more
We are implementing lag sites in our production AD environment. We
used to have a lag site which we used to implement a schema change in
a controlled environment but we recently tore it down. However, we
will be recreating the lag site as this is an essential piece of our
infrastructure.
The
48 matches
Mail list logo
