Problems with introducing a new Windows Server 2008 DC into a Windows 2003 forest

The following case came in recently: I’ve added a new W2k8 DC to our domain, it seemed to replicate fine and DCPROMO didn’t report any errors.  However, I seem to be getting authentication errors when trying to connect via RDP from the new W2k8 DC to other DC’s in the forest.  I’m only seeing this…

3

RODC’s and Port Exhaustion

The problem of port exhaustion usually doesn’t affect DC’s to the same extent as it affects clients and application servers. The reason is that a Domain Controller is the lord of its own small kingdom, it will usually have a local copy (RW or RO) of the partitions it needs to consult for servicing incoming…

0

Troubleshooting RODC’s: Troubleshooting RODC location in the DMZ

Consider the following scenario: A NAP solution with a remediation zone (aka noncompliant network) forincoming clients An RODC in the remediation zone subnet has been assigned to an AD sitecalled ‘RemediationSite’ The remediation subnet has been assigned to the RODC in the ‘RemediationSite’ site Firewall rules prevent the incoming clients in the RemediationSite site from talking to…

15

Troubleshooting RODC’s: Troubleshooting domain joins against RODC’s

So, the first question…do you need to deploy the RODC compatibility pack on your XP/2003 clients if you want to deploy RODC’s?  For domain joins (and password changes) against an RODC the answer is most definitely yes.   One of the most important changes implemented in the compack is how the client calls the DsGetDCName function…

14