Windows 10: Active Directory best practices for two sites and one controler

Hi allOur company will expand with a second physical site, and therefore a separate LAN. We already have an Active Directory in place, running on a Windows Server 2022 machine, with DHCP and DNS services. So we will now have two separate local networks, connected with a site-to-site VPN on router/gateway level, and one AD controller.I was wondering if there is a guide/instructions for setting up such a scenario. Can one AD controller handle this setup? How can I properly set up the DHCP and DNS requests from two different LANs?Thanks for your help

:)

 

Best Practice for Inactive Computers in Active Directory

Hi,

Is there a documentation regarding best practice for Inactive Computers in Active Directory

Thanks,

 

Best Practices patching AD Domain Controllers

What is the Best Practice in patching a production Active Directory Domain Controller?

Thanks folks!

Charlie

 

Multi-Site Active Directory Sync

Hello All,

I have created 4 Active Directory Domain Controllers both in different locations. One is in Delhi and Another one in Mumbai.

Delhi has 2 domain controllers Primary(DDC01) and Secondary(DDC02).

Mumbai has 2 domain controllers Primary(MDC01) and Secondary(MDC02).

Both have different networks and I can take the RDP of both Domain controllers from different locations.

Now I want to connect all 4 Domain Controllers so they can replicate the data and policies.

I saw this can be done through Active Directory Site and Services.

I Added Subnet's of Both Sites in Mumbai DC i.e. MDC01

I created Sites such as Mumbai-HO and Delhi-BO in MDC01 it got replicated to MDC02.

I could see MDC01 and MDC02 but I cannot see any of the DDC01 or DDC02 showing there.

I am checked all the Active Directory ports are opened between both Sites.

Please find the list of ports below: -

UDP Port 88 for Kerberos authentication UDP and TCP Port 135 for domain controllers-to-domain controller and client to domain controller operations. TCP port 139 and UDP 138 for File Replication Service between domain controllers. UDP Port 389 for LDAP to handle normal queries from client computers to the domain controllers. TCP and UDP Port 445 for File Replication Service TCP and UDP Port 464 for Kerberos Password Change TCP ports 3268 and 3269 for Global Catalog from client to domain controller. TCP and UDP Port 53 for DNS from client to domain controller and domain controller to the domain controller.

Am I missing something?

Just FYI... DDC01 and DDC02 are having different gateways due to some reason.