Last Active Directory series four: the implementation of a single domain environment (multi-site)--base. of learning, we have completed a cross-regional Active Directory environment, basically also can make full use of the advantages of the site, user login and AD database replication for good management, below I describe a scene, we see how to solve?
Scene: According to the last time we have completed a single domain environment in different regions, in Beijing/Shanghai/Guangdong, three sites have been created, and each site has a DC layout (according to the company's actual situation can also place more than one DC). If the Shanghai and Guangdong sites can not contact the Beijing site, at this time the user login will be a problem?
The analysis is divided into two types:
Case one: If the domain's functional level is Windows2000 mixed mode, the above case does not need to do any optimization, does not have any problem.
Case two: If the functional level of the domain is Windows native mode, the above case user login will be problematic, and may even appear to be unable to log in. How to operate, can refer to "Again talk about the domain environment users can not login problem!!" (cache failure) has a detailed approach. There are two ways.
France, respectively, in Shanghai and Guangdong site to find a DC as a GC, by default, the Beijing site DC is already GC. Set the method as shown in the following illustration:
Act two, respectively, for sites in Shanghai and Guangdong, "universal group membership caching (from the Beijing site), as shown in the following illustration:
In this way, the optimization work is done. As for why, I will tell you about the domain user login process in the next chapter! Everyone will understand. Here are two articles I will be launched in the back!!
This article from the "Qianshan Island of the main Microsoft technology Space Station" blog, please be sure to retain this source http://jary3000.blog.51cto.com/610705/122077