Ensure the safe construction of the active catalogue safety room

If there is no reliable connection between network members and the domain controller, then an Active Directory network has no value and effect. Therefore, the first thing to consider is to provide physical protection for domain controllers. Remember that there is no secure network without a secure domain controller. Often consider the existence of a major problem in your environment that threatens or interferes with the Active Directory network that is required for effective work. Consider protection issues as much as possible when designing the Active Directory structure and physical location.

You need a room. Where the main equipment and valuable systems are placed. In addition to a few specific administrators, the room is not open to others. Usually locked, in and out there are monitoring and recording. You can put your Active Directory domain controllers, DNS servers and other important systems in the engine room.

You can also prepare two or more computer rooms to place backups or other systems. Because the Active Directory requires at least 2 to 3 domain controllers per domain, each domain controller is placed in a different computer room. Remember that the Active Directory is logical, not physical, and allows physical overlap of cables without having to repeat the logical location of the domain. The physical location of the domain controller does not affect the performance of the Active Directory as long as the cable does not exceed the maximum length (twisted pair is 100 m) and there is no repeater, concentrator and amplifier.

The room can be equipped with gaseous fire protection systems, such as carbon dioxide or EPA-approved FM-200. These systems can remove oxygen from the air and interfere with chemical reactions in combustion. But they are harmful to the human body and must be used in places where people are less. And those who do need access to the computer room to receive training, master how to escape quickly and how to use portable breathing apparatus. Select a fireproof medium that minimizes damage to the computer system. Remember, hardware and other important systems that support Active Directory domain controllers are often very expensive. Your hardware protection investment makes no sense if you damage the device for water or other faulty fireproof media.

The computer room can provide a more suitable storage environment for the computers equipment. The temperature inside is lower than in other rooms (usually 64-70f). Humidity is controlled between 45-60% to prevent electrostatic and condensation. Again, to provide the best operating environment for your Active Directory controller. In addition to temperature and humidity, but also pay attention to dust, smoke, airborne particles, strong magnetic field, detergent (which the ammonia will damage the circuit board), vibration and current instability (power situation for any type of server is critical, especially Active Directory controller) and so on.

If the Active Directory and controller are important to you, you should try to provide physical protection for it. The room is located in the central position of the building as far as possible, which can provide multi-layer physical protection. If possible, do not set the room on the 1 floor, the attic and the basement. People will enter the first floor, the top floor will have a housing leakage problem, and the basement is due to weather or water pipe burst caused by floods.

With additional design and effort, it is entirely possible to establish solid and reliable physical protection for servers, such as Active Directory domain controllers. And these protections have a huge role to play in preventing accidents or major problems.