1 Chapter Overview Creating Sites and Subnets Configuring Intersite Replication Troubleshooting Active Directory Replication.

Slides:



Advertisements
Similar presentations
Implementing and Administering AD DS Sites and Replication
Advertisements

MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration Chapter 6 Managing and Administering DNS in Windows Server 2008.
Lecture 8 Active Directory Structure. Domains Domains group network objects and OUs into a unit with a security boundary. By default, security policies.
XP Tutorial 9 New Perspectives on Microsoft Windows XP 1 Microsoft Windows XP Exploring Your Network Tutorial 9.
Configuring Windows Vista Security Lesson 8. Skills Matrix Technology SkillObjective DomainObjective # Setting Up Users Configure and troubleshoot parental.
Module 5: Configuring Access for Remote Clients and Networks.
Hands-On Microsoft Windows Server 2003 Administration Chapter 11 Administering Remote Access Services.
Hands-On Microsoft Windows Server 2003 Networking Chapter 7 Windows Internet Naming Service.
Implementing ISA Server Caching. Caching Overview ISA Server supports caching as a way to improve the speed of retrieving information from the Internet.
Introduction to Dfs. Limits of Dfs 260 characters per file path 32 alternatives per volume 1 Dfs root per server Unlimited Dfs roots per domain Volumes.
3.1 © 2004 Pearson Education, Inc. Exam Planning, Implementing, and Maintaining a Microsoft Windows Server 2003 Active Directory Infrastructure.
Domain Name Server © N. Ganesan, Ph.D.. Reference.
1 Chapter Overview Introduction to Windows XP Professional Printing Setting Up Network Printers Connecting to Network Printers Configuring Network Printers.
1 Chapter Overview Creating User and Computer Objects Maintaining User Accounts Creating User Profiles.
Hands-On Microsoft Windows Server 2008 Chapter 8 Managing Windows Server 2008 Network Services.
70-291: MCSE Guide to Managing a Microsoft Windows Server 2003 Network Chapter 10: Remote Access.
1 Message Routing Administration Routing Group Planning Connecting Routing Groups Link Status Information.
MCTS Guide to Configuring Microsoft Windows Server 2008 Active Directory Chapter 10: Configuring and Maintaining the Active Directory Infrastructure.
ADVANCED MICROSOFT ACTIVE DIRECTORY CONCEPTS
70-294: MCSE Guide to Microsoft Windows Server 2003 Active Directory, Enhanced Chapter 7: Active Directory Replication.
1 ISA Server 2004 Installation & Configuration Overview By Nicholas Quinn.
Chapter 7: Using Windows Servers to Share Information.
Name Resolution Domain Name System.
Using Windows Firewall and Windows Defender
Module 7: Implementing Sites to Manage Active Directory Replication.
5.1 © 2004 Pearson Education, Inc. Lesson 5: Administering User Accounts Exam Microsoft® Windows® 2000 Directory Services Infrastructure Goals 
MIGRATING FROM MICROSOFT EXCHANGE SERVER AND OTHER MAIL SYSTEMS Appendix B.
INSTALLING MICROSOFT EXCHANGE SERVER 2003 CLUSTERS AND FRONT-END AND BACK ‑ END SERVERS Chapter 4.
1 Chapter Overview Installing the TCP/IP Protocols Configuring TCP/IP.
Active Directory Boundaries - Purpose Replication Boundaries Security Boundaries.
1 Chapter Overview Using the New Connection Wizard to configure network and Internet connections Using the New Connection Wizard to configure outbound.
MCSE Guide to Microsoft Exchange Server 2003 Administration Chapter Seven Configuring and Managing Exchange Server.
MCSE Guide to Microsoft Exchange Server 2003 Administration Chapter Two Installing and Configuring Exchange Server 2003.
1 Chapter 7: NAT in Internet and Intranet Designs Designs That Include NAT Essential NAT Design Concepts Data Protection in NAT Designs NAT Design Optimization.
Module 7 Active Directory and Account Management.
Module 7: Resolving NetBIOS Names by Using Windows Internet Name Service (WINS)
1 Week 8 – Manage Sites and Replication Configure Sites and Subnets Configure the Global Catalog and Application Partitions Configure Replication.
Overview Managing a DHCP Database Monitoring DHCP
© Wiley Inc All Rights Reserved. MCSE: Windows Server 2003 Active Directory Planning, Implementation, and Maintenance Study Guide, Second Edition.
Working with Active Directory Sites BAI516. Logical Versus Physical Structure Logical Forest Trees Domains OUs Leaf objects Physical IP Subnets/Sites.
Working with Active Directory Sites Lesson 3. Skills Matrix Technology SkillObjective DomainObjective # Introducing Active Directory Sites Configure sites2.3.
SMS Software Distribution. Overview  Explaining How SMS Distributes Software  Managing Distribution Points  Configuring Software Distribution and the.
10.1 © 2004 Pearson Education, Inc. Exam Designing a Microsoft ® Windows ® Server 2003 Active Directory and Network Infrastructure Lesson 10: Planning.
Working with Active Directory Sites Lesson 3. Skills Matrix Technology SkillObjective DomainObjective # Introducing Active Directory Sites Configure sites2.3.
Windows Server 2003 站台設定與管理
Module 4: Configuring Active Directory Sites and Replication.
1 Chapter Overview Managing Object and Container Permissions Locating and Moving Active Directory Objects Delegating Control Troubleshooting Active Directory.
Using Routing and Remote Access Chapter Five. Exam Objectives in this Chapter:  Plan a routing strategy Identify routing protocols to use in a specified.
70-412: Configuring Advanced Windows Server 2012 services
NetTech Solutions Protecting the Computer Lesson 10.
1 Chapter Overview Creating Web Sites and FTP Sites Creating Virtual Directories Managing Site Security Troubleshooting IIS.
1 Active Directory Administration Tasks And Tools Active Directory Administration Tasks Active Directory Administrative Tools Using Microsoft Management.
1 Chapter 13: RADIUS in Remote Access Designs Designs That Include RADIUS Essential RADIUS Design Concepts Data Protection in RADIUS Designs RADIUS Design.
MCSE Guide to Microsoft Exchange Server 2003 Administration Chapter Three Managing Recipients.
1 Chapter 8: DHCP in IP Configuration Designs Designs That Include DHCP Essential DHCP Design Concepts Configuration Protection in DHCP Designs DHCP Design.
1 Configuring Sites Configuring Site Settings Configuring Inter-Site Replication Troubleshooting Replication Maintaining Server Settings.
11 WORKING WITH ACTIVE DIRECTORY SITES Chapter 3.
Unit 4 NT1330 Client-Server Networking II Date: 1/13/2016
Module 4: Configuring Active Directory ® Domain Sevices Sites and Replication.
70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 6: Planning, Configuring, And Troubleshooting WINS.
70-294: MCSE Guide to Microsoft Windows Server 2003 Active Directory, Enhanced Chapter 6: Active Directory Physical Design.
1 Chapter Overview Monitoring Access to Shared Folders Creating and Sharing Local and Remote Folders Monitoring Network Users Using Offline Folders and.
COEXISTENCE WITH MICROSOFT EXCHANGE SERVER 5.5 Appendix A.
Working with Active Directory Sites Lesson 3. Logical Versus Physical Structure Logical Forest Trees Domains OUs Leaf objects Physical IP Subnets/Sites.
Chapter 7: Using Windows Servers
Lesson #10 MCTS Cert Guide Microsoft Windows 7, Configuring Chapter 10 Configuring Network and Firewall Settings.
Active Directory Replication
Overview Multimedia: The Role of WINS in the Network Infrastructure
Presentation transcript:

1 Chapter Overview Creating Sites and Subnets Configuring Intersite Replication Troubleshooting Active Directory Replication

2 Creating Sites and Subnets Replication is an important function of the Active Directory service. All domain controllers must have an identical copy of the Active Directory database. In most cases replication is automatic, but sometimes you must create Active Directory objects needed to manually configure replication.

3 Configuring Site Settings To configure a site setting: 1. Create a new site object. 2. Associate a subnet with the site. 3. Connect the sites using site links.

4 Creating a Site Object In Active Directory, a site is a set of servers that are well connected in terms of speed and cost. Well connected usually means the servers are connected using a local area network (LAN) protocol such as Ethernet or Token Ring. Replication within sites occurs as needed, when changes are made on a domain controller, rather than as scheduled.

5 Creating a Site Object (Cont.) By default, all domain controllers on an Active Directory network are part of a single site, which is automatically created by Microsoft Windows 2000 when the first domain is created. You can create additional sites when domain controllers are connected by slow or costly links, such as wide area network (WAN) links. Replication between sites occurs only as scheduled.

6 Creating a Site Object (Cont.) When Active Directory is installed on the first domain controller on the network, Windows 2000 creates the Default-First-Site-Name site object in the Sites container. Site objects do not appear in Active Directory Users And Computers. You use Active Directory Sites And Services to create and manage sites.

7 The Active Directory Sites And Services Console

8 The New Object – Site Dialog Box

9 Associating a Subnet Object With a Site Computers on Transmission Control Protocol/Internet Protocol (TCP/IP)–based Active Directory networks are assigned to sites based on their location in subnets. Subnets group computers in a way that identifies their physical proximity on the network. A site consists of one or more IP subnets. You create subnet objects and associate them with a particular site by using Active Directory Sites And Services.

10 The New Object – Subnet Dialog Box

11 The Properties Dialog Box for a Subnet

12 Creating Site Links A site link object and a physical link (such as a WAN connection) are required for replication to occur between two sites. You can configure a site link object to determine when replication between the sites will occur. You can use a single site link object to connect more than one pair of sites. You create site links by using Active Directory Sites And Services.

13 Creating Site Links (Cont.) DEFAULTIPSITELINK is automatically created in the IP container when you install Active Directory on the first domain controller in the site. You can create any additional site links you need.

14 Replication Protocols Site link objects use Internet Protocol (IP) or Simple Mail Transfer Protocol (SMTP) to establish connections between sites. IP replication Uses remote procedure calls (RPCs) for replication over site links (intersite) and within a site (intrasite) Normally adheres to replication schedules SMTP replication Is used only for intersite replication Typically ignores all schedules

15 Creating Site Link Objects The Inter-Site Transports folder contains the IP folder and the SMTP folder. You create site link objects under the folder for the protocol you want that site link to use.

16 The Inter-Site Transports Folder in Active Directory Sites And Services

17 The New Object – Site Link Dialog Box

18 The Properties Dialog Box for a Site Link Object

19 Lesson Summary A site is a set of servers that are well connected in terms of speed and cost. Subnet objects identify the computers that belong in a specific site. A site link object and a physical link (such as a WAN connection) are required for replication to occur between two sites. You use Active Directory Sites And Services to create and manage sites, subnets, and site link objects.

20 Configuring Intersite Replication The WAN technologies that connect sites are represented in Active Directory by site link objects. You can improve site link connectivity by joining overlapping site links into site link bridges or by bridging all of the site links.

21 Tasks for Configuring Intersite Replication 1. Create site links. 2. Configure site link attributes. 3. Create site link bridges. 4. Configure connection objects (optional). 5. Designate a preferred bridgehead server (optional).

22 Configuring Site Link Attributes When you configure intersite replication, you should provide the following information for all site links: Site link cost Replication frequency Replication availability

23 Site Link Cost The site link cost assigns a value indicating the relative cost of each available connection used for intersite replication. If you have multiple redundant network connections between multiple sites Create a site link object for each connection Then assign a cost to each site link that reflects that link's relative bandwidth Cost is a measurement of the priority of each site link.

24 Example Site Link Configuration

25 The Properties Dialog Box for a Site Link Object

26 Replication Frequency You configure the replication frequency for site links by specifying how many minutes Active Directory should wait before using a connection to check for replication updates. Default interval = 180 minutes (3 hours) Minimum interval = 15 minutes Maximum interval = 10,080 minutes (1 week) You use Active Directory Sites And Services to schedule replication frequency for a site link object.

27 Replication Availability You specify when a site link should be available for replication by using Active Directory Sites And Services. Because SMTP ignores schedules, you should not configure site link replication availability on SMTP site links unless The site link uses scheduled connections, or The SMTP queue is not on a schedule, or Information is exchanged directly between servers and not through intermediaries

28 The Schedule For Dialog Box for a Site Link Object

29 The Properties Dialog Box for an Intersite Transports Protocol Folder

30 Creating Site Link Bridges By default, when more than two sites are linked for replication and they all use the same transport, the site links are bridged and transitive. If your IP network is not fully routed, you can turn off the transitive site link feature for the IP transport and configure site link bridges instead. You use Active Directory Sites And Services to create a site link bridge.

31 The New Object – Site Link Bridge Dialog Box

32 Manually Configuring Connections Active Directory automatically creates and deletes the connections it needs for replication under normal conditions. You can manually add or configure connections or force replication over a particular connection, but normally you should allow Active Directory to automatically optimize the replication process. You should use Active Directory Sites And Services to create a connection manually only if you are certain the connection is required, and if you want the connection to persist until you manually remove it.

33 The Find Domain Controllers Dialog Box

34 Forcing Replication Over a Connection

35 Designating a Preferred Bridgehead Server Bridgehead servers are domain controllers that are the contact points for the exchange of replication information between sites. You can specify multiple preferred bridgehead servers, but only one can be the active preferred bridgehead server at any time for a single site. You must specify a preferred bridgehead server if your network uses a firewall to protect a site. Designate your firewall proxy server as the preferred bridgehead server.

36 Designating a Preferred Bridgehead Server (Cont.) Establishing a preferred bridgehead server designates that server as the priority server for information exchange over the protocol that the site link is established for. Normally, the preferred bridgehead server is used as the first choice to receive and send all directory replication traffic. You use Active Directory Sites And Services to designate a preferred bridgehead server.

37 The Properties Dialog Box for a Server Object

38 Lesson Summary Configuring site link cost, replication frequency, and replication availability enables you to control which site links Active Directory should use for replication and when. You can create site link bridges to improve site link connectivity. You can designate a domain controller as a preferred bridgehead server to specify which domain controller should be the preferred recipient of intersite replication. You use Active Directory Sites And Services to perform all of the tasks discussed in this lesson.

39 Troubleshooting Active Directory Replication Most Active Directory replication problems that can be fixed with Active Directory Sites And Services involve poor directory information.

40 Replication Problems Ineffective replication can result in poor Active Directory performance and network problems, such as new users not being recognized. Replication problems usually result in out-of- date Active Directory information or unavailable domain controllers.

41 Replication Troubleshooting Scenarios Symptom: Replication of directory information has stopped. Cause: The sites containing the clients and domain controllers are not connected by site links to domain controllers in other sites on the network. Solution: Create a site link object joining the current site to a site that is connected to the rest of the network's sites.

42 Replication Troubleshooting Scenarios (Cont.) Symptom: Replication has slowed but not stopped. Possible cause #1: The intersite replication structure is not as complete as it should be. Possible solution #1: Make sure Active Directory is configured properly. Consider creating a site link bridge or bridging all of the site links.

43 Replication Troubleshooting Scenarios (Cont.) Symptom: Replication has slowed but not stopped. (Cont.) Possible cause #2: Current network resources are insufficient to handle the amount of replication traffic. Possible solution #2: There are several possible solutions: Increase available network resources for directory traffic. Decrease the frequency of replication. Configure site link costs. Create site links or site link bridges.

44 Replication Troubleshooting Scenarios (Cont.) Symptom: Replication has slowed but not stopped. (Cont.) Possible cause #3: Directory information that is changed on domain controllers at one site is not being updated on domain controllers at other sites in a timely manner because intersite replication is scheduled too infrequently. Possible solution #3: Increase the frequency of replication, and if a site link is restricting replication, increase the time range during which replication can occur on that site link.

45 Replication Troubleshooting Scenarios (Cont.) Symptom: Replication has slowed but not stopped. (Cont.) Possible cause #4: Clients are requesting services from a domain controller with a low-bandwidth connection. Possible solution #4: There are several possible solutions: Check for a site that better serves the client's subnet. If a client is isolated from domain controllers, consider creating another site with its own domain controller that includes the client. Install a connection with more bandwidth.

46 Checking Replication Topology The Knowledge Consistency Checker (KCC) is a process that Considers the cost of connections Checks the availability of domain controllers Checks whether new domain controllers have been added The KCC uses this information to add or remove connection objects to create an efficient replication topology. You use Active Directory Sites And Services to check the replication topology by forcing the KCC to run on a server object.

47 Lesson Summary A complete lack of Active Directory replication can be caused by a lack of site link objects. A slowdown of replication might occur because of incorrectly configured site link objects or from other causes. You can check the replication topology for your network by using Active Directory Sites And Services to force the KCC to run on a server object.