Home > Others

Learning summary-active Directory Domain Services Management 07-RODC Server

Source: Internet
Author: User
Tags domain server
Developer on Alibaba Coud: Build your first app with APIs, SDKs, and tutorials on the Alibaba Cloud. Read more >

RODC server


I. Application Scenarios

1.1) General operation and Maintenance

1.2) Security considerations, read-only properties, cache only the password of the branch office user

Two. Delegated administration

2.1) Helpdesk: Administrative user, OU delegated control for branch offices, installation of Windows 7 Service Pack 1 (SP1) remote server Administration Tools, MMC console

2.2) Rodcadmin: Maintenance of Backup server, installation of patches, etc.

Three. RODC


Delegating Helpdesk User Management Branch office OU"Sales"

650) this.width=650; "src=" http://s5.51cto.com/wyfs02/M01/82/F7/wKiom1dniyfRFfieAAE9yS4-VD4085.jpg "style=" float: none; "title=" a.jpg "alt=" Wkiom1dniyfrffieaae9ys4-vd4085.jpg "/>

After adding a user, select permissions

650) this.width=650; "src=" http://s5.51cto.com/wyfs02/M02/82/F6/wKioL1dniyfynp3VAACYz4FF_QU765.jpg "style=" float: none; "title=" b.jpg "alt=" Wkiol1dniyfynp3vaacyz4ff_qu765.jpg "/>

Helpdesk users and computers that can use the Win7 Computer installation Rmst tool to manage sales

650) this.width=650; "src=" http://s2.51cto.com/wyfs02/M02/82/F8/wKiom1dnlQeDIgfIAADhEWk8UOQ860.jpg "title=" 7.jpg " alt= "Wkiom1dnlqedigfiaadhewk8uoq860.jpg"/>

650) this.width=650; "src=" http://s5.51cto.com/wyfs02/M00/82/F8/wKiom1dnlXjjgvaAAAChdpr-yFs366.jpg "title=" 8.jpg " alt= "Wkiom1dnlxjjgvaaaachdpr-yfs366.jpg"/>

650) this.width=650; "src=" http://s2.51cto.com/wyfs02/M00/82/F8/wKiom1dnlmHx7ErhAAHshE1Es7I263.jpg "title=" 10.jpg "alt=" Wkiom1dnlmhx7erhaahshe1es7i263.jpg "/>

Administrative Tools optimization, on the Active Directory domain server, open MMC

650) this.width=650; "src=" http://s1.51cto.com/wyfs02/M02/82/F7/wKioL1dnkJ2BJnW8AABWLTu8USE494.jpg "title=" D.jpg " alt= "Wkiol1dnkj2bjnw8aabwltu8use494.jpg"/>

650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M01/82/F7/wKioL1dnksaDA4ROAAFyl6wspVw906.jpg "title=" E.jpg " alt= "Wkiol1dnksada4roaafyl6wspvw906.jpg"/>

650) this.width=650; "src=" http://s2.51cto.com/wyfs02/M00/82/F7/wKioL1dnkm2SafNtAAEeG2QbGLQ853.jpg "style=" float: none; "title=" f.jpg "alt=" Wkiol1dnkm2safntaaeeg2qbglq853.jpg "/>

650) this.width=650; "src=" http://s4.51cto.com/wyfs02/M01/82/F7/wKioL1dnkvWTa2KLAAEHRluNeCQ240.jpg "title=" G.jpg " alt= "Wkiol1dnkvwta2klaaehrlunecq240.jpg"/>

We can save the MMC console to a shared folder and copy it to the Helpdesk Win7 computer.

650) this.width=650; "src=" http://s1.51cto.com/wyfs02/M02/82/F8/wKiom1dnk5_TuQ3DAAEyCcREmSQ422.jpg "title=" h.jpg " alt= "Wkiom1dnk5_tuq3daaeyccremsq422.jpg"/>

650) this.width=650; "src=" Http://s2.51cto.com/wyfs02/M00/82/F8/wKiom1dnluag7KEeAAEwfZEh3e0362.jpg "title=" Iiii.jpg "alt=" Wkiom1dnluag7keeaaewfzeh3e0362.jpg "/>

Deploying an RODC

650) this.width=650; "src=" http://s1.51cto.com/wyfs02/M00/82/F8/wKiom1dnmbjjRAO9AAEGP6yePdo612.jpg "title=" J.jpg " alt= "Wkiom1dnmbjjrao9aaegp6yepdo612.jpg"/>

Delegating RODC administrators (support for adding groups), setting the RODC whitelist and blacklist

650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M00/82/F8/wKiom1dnmnKglrGRAAE2iTnK0kA323.jpg "title=" K.jpg " alt= "Wkiom1dnmnkglrgraae2itnk0ka323.jpg"/>

650) this.width=650; "src=" http://s2.51cto.com/wyfs02/M01/82/F8/wKioL1dnmt7jO5fkAAFbT2khPnw765.jpg "title=" L.jpg " alt= "Wkiol1dnmt7jo5fkaafbt2khpnw765.jpg"/>

After the installation is complete, you can log on to the RODC server by using the domain user Rodcadmin

650) this.width=650; "src=" http://s5.51cto.com/wyfs02/M00/82/F8/wKioL1dnnWayDeWlAACKMRiNrNg283.jpg "title=" M.jpg " alt= "Wkiol1dnnwaydewlaackmrinrng283.jpg"/>

For other OUs, the user is not authorized.

650) this.width=650; "src=" http://s1.51cto.com/wyfs02/M00/82/F8/wKiom1dnnZqz4nCkAAFe9wKHXBE834.jpg "title=" mm.jpg "alt=" Wkiom1dnnzqz4nckaafe9wkhxbe834.jpg "/>

Here we can see that the RODC can only synchronize data by connecting DC01

650) this.width=650; "src=" http://s5.51cto.com/wyfs02/M01/82/F8/wKiom1dnnayR1zcmAAHZzi32LxE906.jpg "title=" N.jpg " alt= "Wkiom1dnnayr1zcmaahzzi32lxe906.jpg"/>

To view the password replication policy, click Advanced to see the users and computers that have authenticated the login on the RODC

650) this.width=650; "src=" http://s5.51cto.com/wyfs02/M01/82/F9/wKiom1dnoSqhhZ0zAAINEgf_RHI830.jpg "style=" float: none; "title=" o.jpg "alt=" Wkiom1dnosqhhz0zaainegf_rhi830.jpg "/>

Branch Office client of the RODC to verify that the preferred DNS server needs to be directed to the RODC

650) this.width=650; "src=" http://s2.51cto.com/wyfs02/M02/82/F8/wKioL1dnoSuyDgqQAACTUSltd6k711.jpg "style=" float: none; "title=" p.jpg "alt=" Wkiol1dnosuydgqqaactusltd6k711.jpg "/>








This article from "Johnlu Microsoft technology Blog" blog, declined reprint!

Learning summary-active Directory Domain Services Management 07-RODC Server

This article is an English version of an article which is originally in the Chinese language on aliyun.com and is provided for information purposes only. This website makes no representation or warranty of any kind, either expressed or implied, as to the accuracy, completeness ownership or reliability of the article or any translations thereof. If you have any concerns or complaints relating to the article, please send an email, providing a detailed description of the concern or complaint, to info-contact@alibabacloud.com. A staff member will contact you within 5 working days. Once verified, infringing content will be removed immediately.

Related Keywords:
microsoft word active directory domain services unavailable active directory domain services unavailable printer active directory domain services configuration wizard 2012 active domain directory services unavailable windows 10 capacity planning for active directory domain services active directory domain services unavailable windows 10 active directory domain services is unavailable

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

What's Trending
Top 10 Tags
datastax versions naming convention zookeeper client class definition md5 microsoft sql server 2005 data structures exception handling error handling
Top 10 Keywords
microsoft download center down wordpress address url site address url wordpress address url windows installer 4 0 download 302 not found web address url definition site address url wordpress db2 integer mac os installation step by step pdf abbreviation for return

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

Get Started for Free

  • Sales Support

    1 on 1 presale consultation

    Chat Contact Sales

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

    Open a Ticket

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.

    Learn More