Location: List Archives

List Archives

This forum is an archive of all posts to our mailing list over the past few years.  The forum is set read only therefore to contribute you will need to join our list community.  See more info about this here.

 

When subscribed to the list you should use your standard email client to send your posts to ActiveDir@mail.activedir.org.

List Archives

Forums >ActiveDir Mail List Archive >List Archives
Subject: [ActiveDir] 2008 External Trust Domains Controller Selection
Prev Next
You are not authorized to post a reply.

AuthorMessages
Julio.munizUser is Offline

Posts:27

02/01/2012 5:42 PM  
I am looking to confirm the DC selection on two domains with external
Two-Way trust. When DOMAN_A authenticates a user from DOMAIN_B:
PS: No sites exists with the same name between both Domains yet.



1. Is it a random selection of the DC based on DNS records ?

2. Are the AD _Kerberos DNS records used to determine the
selection ?

3. Does it take advantage from the Priority/Weight settings of the
DNS records even thou is an external trust ?

4. Can a DC be targeted based on the DNS record settings.



I am looking to target authentication to use a particular DOMAIN_B
controller. Any suggestions ?



As always, thank you for your great feedback.



Julio

TonyUser is Offline

Posts:172

02/01/2012 5:42 PM  
Hi Julio

Here's a good article that explains the DC location process in your scenario:

http://blogs.technet.com/b/askds/archive/2008/09/24/domain-locator-across-a-forest-trust.aspx

Basically, the trick is to make sure you have overlapping site names.

Tony

From: activedir-owner@xxxxxxxxxxxxxxxx [mailto:activedir-owner@xxxxxxxxxxxxxxxx] On Behalf Of Muniz, Julio
Sent: Friday, 21 October 2011 6:34 a.m.
To: activedir@xxxxxxxxxxxxxxxx
Subject: [ActiveDir] 2008 External Trust Domains Controller Selection

I am looking to confirm the DC selection on two domains with external Two-Way trust. When DOMAN_A authenticates a user from DOMAIN_B:
PS: No sites exists with the same name between both Domains yet.


1. Is it a random selection of the DC based on DNS records ?

2. Are the AD _Kerberos DNS records used to determine the selection ?

3. Does it take advantage from the Priority/Weight settings of the DNS records even thou is an external trust ?

4. Can a DC be targeted based on the DNS record settings.

I am looking to target authentication to use a particular DOMAIN_B controller. Any suggestions ?

As always, thank you for your great feedback.

Julio

You are not authorized to post a reply.
Forums >ActiveDir Mail List Archive >List Archives > [ActiveDir] 2008 External Trust Domains Controller Selection



ActiveForums 3.7
Friends

Friends

VisualClickButoton
Members

Members

MembershipMembership:
Latest New UserLatest:charleswj
New TodayNew Today:0
New YesterdayNew Yesterday:0
User CountOverall:5491
People OnlinePeople Online:
VisitorsVisitors:44
MembersMembers:0
TotalTotal:44
Online NowOnline Now:

Ads

Copyright 2012 ActiveDir.org
Terms Of Use