MCSE-08-Implementing of An Active Directory Service-09-Theory

Implementing Sites To Manage Active Directory Replication
ADVANTAGE PRO Chennais Premier Networking Training Center
Content
Introduction to Active Directory Replication Creating and Configuring Sites Managing Site Topology Troubleshooting Replication Failures Planning a Site
Introduction to Active Directory Replication

Replication is the process of updating information in Active Directory from one domain controller to other domain controller on a network. The replication process synchronizes the movement of updated information between the domains.
Replication of Linked Multivalued Attributes

Replication of linked multivalued attributes depends on the forest functional level.
Forest Functional Level What Happens? < Windows Server 2003 Change triggers replication of the entire membership list = Windows Server 2003 Replication occurs by individual value instead of the whole attribtue
Directory Partitons
SCHEMA
FOREST
CONFIGURATION
DOMAIN CONFIGURABLE REPLICATION
DOMAIN APPLICATION
Active Directory Database
Directory Partitons
Schema Partition Only one Schema partion exists per forest. This partition is stored on all domain controllers in a forest. It contains definitions of all objects and attributes that you can create in the directory. Schema information is replicated to all domain controllers in the forest.
Directory Partitons
Configuration Partition Only one configurtion partition per forest. Stored on all domain controllers in a forest. The configuration partition contains information about the forest-wide Active Directory structure. Configuration information is replicated to all domain controllers in a forest.
Directory Partitons
Domain Partition Many domain partitions can exit per forest. Domain partition are stored on each domain controller in a given domain. It contains information about all domain-specific objects that were created in that domain, including users, groups, computers and OU. All objects in this partition is stored in Global Catalog with only a subset of their attribute.
Directory Partitons
Application Partition It stores inforamtion about applications in Active Directory. Unlike a domain partition, this partiton cannot store security principal objects, such as user accouts. The data in an application is not stored in the gobal catalog.
Replication Topology
Replication Topology is the route by which replication data travels throughout a network. Replication occurs between two domain controller. To create this topology, Active Directory must determine which domain controllers replicate data with other domain controllers.
Global Catalog
A global catalog server is a domain controller that stores two forest-wide partitions. It has read/write copy of the partiton from its own domain and a partial replica of all domain partition in the forest. These partial replicas contain a read-only subset of the information in each domain partition.
Global Catalog and Replication of Partition

When a new domain is added to forest, the Configuration partiton stores information about new domain. Active directory replicates the configuration partion to all domain controllers. Each global catalog server becomes a partial replica of the new domain controller that obtaing replica information.
Sites
In Active Directory, Sites helps to define the physical structure of a network. Sites are used to control replication traffic, logon traffic, and client computer requests to the gobal catalog server. It consits of server objects, which contain connection objects that enable replication.
Site Link
Enables replication traffic between sites. Represents the physical connection between sites.
Default Site Link

When first domain is created, Active Directory creates a default site link named Defaultipsitelink. It includes the first site and is located in the IP container in Active directory. Site link can be renamed.
Site Link Cost

It is a dimensionless number that includes the relative speed, reliability and preference of the network The lower the site link cost, the higher the priority for that link. The default cost value is 100, with possible values from 1 to 99999.
Site Link Replication Schedule

It is another site link attribute that can be configure. When a links replication is schedule, specify the times when the link is available for replication. The replication availability is configured for times when there is little other network traffic.
Site Link Transport Protocols

A transport protocol is a common language that computers share in order to communcate during replication. Active Directory uses only one protrocol for replication within a site.

The Protocols used are : Remote Procedure Call (RPC) Simple Mail Transfer Protocol (SMTP)

Remote Procedure Call (RPC) RPC is the default protrocol. RPC over IP provides reliable, high-speed connectivity within sites. RPC over IP is the best transport protocol

Simple Mail Transfer Protocol (SMTP) SMTP supports replication of the schema, configuration, and global catalog between sites and domains. This protocol cannot be used for replication of the domain partition. Configure a certificate authority to sign the SMTP messages and ensure the authenticity of directory updates.
Replication Within Sites

Assumes fast and highly reliable network links. Does not compress replication traffic. Uses a change notification mechanism
Replication Between Sites

Assumes limited available bandwidth and unreliable network links. Compress all replication traffic between sites Occurs on a manual schedule
Creating a Site
Select this option
Creating a Site
Here right click Site and select New Site
Creating a Site
Give the Name
Creating a Site
Click OK
Creating a Site
New site will create here
Creating a Subnet Object
Click this option

Right click Subnets select new subnet
Mention the IP Select the Site Click OK
Subnet will display here
Moving a Domain Controller To A Different Site
Select the option

Right click the Domain Controller and select Move
Select the Site
Click OK

The DC is Moved here
Delegating Control Of Sites
Select this Option

Right click the Sites and Delegate Controller
Click Next
Click Add to add the user
Select the user
Click Next
Click Next
Give the permission to that user Click Next
Click Finish
Bridgehead Server
It is a domain controller that you designate to send and recive replicated data at each site. Sends and receives replicated data. It replicates the changes to all domain controllers in the site.
Intersite Topology Generator

Intersite Topology Generator defines the replication between sites on a network. A single Domain Controller in each site is automatically designated to intersite topology generator.
Intersite Topology Generator

Functions: It automatically selects one or more domain controllers to become bridgehead servers. If a bridgehead server becomes unavailable, it automatically selects another bridgehead server. It runs Knowledge Consistency Checker(KCC) to determine the replication topology and resultant connection objects to communicate with other sites.
Creating a Preferred Bridgehead Server
Click this option
Right click the DC and select Properties
Select the protocols and click ADD
Click OK
Refresh the Replication Topology

First determine whether you want to refresh the replication topology between sites or within sites. To regenerate it between sites, run the KCC on the domain controller that holds the inter site topology generator. To regenerate it within a site, run the KCC on any doamin controller that is not the inter site topology generator.
Forcing KCC to run
Click This option
Forcing KCC to run

Right click NTDS settings and select ALLTASK
Forcing KCC to run
Click OK
Common Replication Problems

SYMPTOM Replication does not finish or occur Replication is slow Client computers receive a slow response Replication greatly increases network traffic The KCC cannot complete the topology POSSIBLE CAUSES * Sites not connected by site links * No bridgehead server in the site * Inefficient site topology and schedule * No domain controller online in client site * Not enough domain controllers * Insufficient bandwidth * Incorrect site topology * Exception in the KCC
Replication Monitor
It graphically displays the replication topology of connections between servers on the same site. You can view low-level status and performance of replication between domain controllers.
Configure Replication Monitor
Type the command
Click view and select options
Select Status login
Click OK
Right click the monitor server and select ADD MONITOR SERVER
Click Next Mention the server name
Select the server Click to monitorFinish
Dcdiag Tool
Analyze the state of a domain controller and report any problems Perform a series of tests to verify different areas of the system
Dcdiag Tool
Type CMD
Dcdiag Tool
Type the command dcdiag and click enter
Dcdiag Tool

MCSE-08-Implementing of An Active Directory Service-09-Theory

Încărcat de

Informații document

Descriere originală:

Titlu original

Drepturi de autor

Formate disponibile

Partajați acest document

Partajați sau inserați document

Opțiuni de partajare

Vi se pare util acest document?

Este necorespunzător acest conținut?

Drepturi de autor:

Formate disponibile

MCSE-08-Implementing of An Active Directory Service-09-Theory

Încărcat de

Drepturi de autor:

Formate disponibile

Implementing Sites To Manage Active Directory Replication

ADVANTAGE PRO Chennais Premier Networking Training Center

ADVANTAGE PRO Chennais Premier Networking Training Center

Introduction to Active Directory Replication

ADVANTAGE PRO Chennais Premier Networking Training Center

Replication of Linked Multivalued Attributes

ADVANTAGE PRO Chennais Premier Networking Training Center

Active Directory Database

ADVANTAGE PRO Chennais Premier Networking Training Center

ADVANTAGE PRO Chennais Premier Networking Training Center

ADVANTAGE PRO Chennais Premier Networking Training Center

ADVANTAGE PRO Chennais Premier Networking Training Center

Global Catalog and Replication of Partition

ADVANTAGE PRO Chennais Premier Networking Training Center

ADVANTAGE PRO Chennais Premier Networking Training Center

Default Site Link

ADVANTAGE PRO Chennais Premier Networking Training Center

Site Link Cost

ADVANTAGE PRO Chennais Premier Networking Training Center

Site Link Replication Schedule

ADVANTAGE PRO Chennais Premier Networking Training Center

Site Link Transport Protocols

ADVANTAGE PRO Chennais Premier Networking Training Center

Site Link Transport Protocols

ADVANTAGE PRO Chennais Premier Networking Training Center

Site Link Transport Protocols

ADVANTAGE PRO Chennais Premier Networking Training Center

Site Link Transport Protocols

Replication Within Sites

ADVANTAGE PRO Chennais Premier Networking Training Center

Replication Between Sites

ADVANTAGE PRO Chennais Premier Networking Training Center

Select this option

ADVANTAGE PRO Chennais Premier Networking Training Center

ADVANTAGE PRO Chennais Premier Networking Training Center

ADVANTAGE PRO Chennais Premier Networking Training Center

ADVANTAGE PRO Chennais Premier Networking Training Center

New site will create here

ADVANTAGE PRO Chennais Premier Networking Training Center

Creating a Subnet Object

Click this option

ADVANTAGE PRO Chennais Premier Networking Training Center

Creating a Subnet Object

ADVANTAGE PRO Chennais Premier Networking Training Center

Creating a Subnet Object

Mention the IP Select the Site Click OK

ADVANTAGE PRO Chennais Premier Networking Training Center

Creating a Subnet Object

Subnet will display here

ADVANTAGE PRO Chennais Premier Networking Training Center

Moving a Domain Controller To A Different Site

Select the option

ADVANTAGE PRO Chennais Premier Networking Training Center

Moving a Domain Controller To A Different Site

ADVANTAGE PRO Chennais Premier Networking Training Center

Moving a Domain Controller To A Different Site

Select the Site

ADVANTAGE PRO Chennais Premier Networking Training Center

Moving a Domain Controller To A Different Site

ADVANTAGE PRO Chennais Premier Networking Training Center

Delegating Control Of Sites

Select this Option