+ Post New Thread
Results 1 to 4 of 4
Windows Server 2008 Thread, Read-only domain controllers and disaster recovery in Technical; I'm planning to move our backup server from $current_remote_location to $other_remote_location_that's_better_suited. As part of that (and a larger planned 2008R2 ...
  1. #1


    Join Date
    Dec 2005
    Location
    In the server room, with the lead pipe.
    Posts
    4,649
    Thank Post
    275
    Thanked 780 Times in 607 Posts
    Rep Power
    224

    Read-only domain controllers and disaster recovery

    I'm planning to move our backup server from $current_remote_location to $other_remote_location_that's_better_suited.

    As part of that (and a larger planned 2008R2 upgrade) I'm pondering the benefit of adding a lightweight rodc to the mix. I'm aware I'd have to pre-cache passwords and any locked out accounts would stay that way until it spoke to a writeable dc. But it would mean faster appropriate access to anything I can make available from backup.

    Anyone done/planned this? Is it worth it? It would mostly be a time cost (re-used hardware).

  2. #2

    Join Date
    Oct 2005
    Location
    hey hey hey, stay outta my shed. STAY OUT OF MY SHED.
    Posts
    1,039
    Thank Post
    238
    Thanked 199 Times in 153 Posts
    Rep Power
    108
    Why a RODC and not a standard DC?

  3. #3

    ZeroHour's Avatar
    Join Date
    Dec 2005
    Location
    Edinburgh, Scotland
    Posts
    5,732
    Thank Post
    910
    Thanked 1,329 Times in 809 Posts
    Blog Entries
    1
    Rep Power
    446
    tbh I would have to ponder that too, there are very few scenarios I can see them be a benefit, high latency offices for example possibly but its not like fibre/lan has any latency and if your dcs have plenty of ram they are all very quick anyway.
    I just dont know if you would get a benefit from it unless you remote links are slow.

  4. #4


    Join Date
    Dec 2005
    Location
    In the server room, with the lead pipe.
    Posts
    4,649
    Thank Post
    275
    Thanked 780 Times in 607 Posts
    Rep Power
    224
    @Roberto
    RODC as opposed to a writeable one because of the location. It's secure enough for a repo of encrypted backups (Backups are encrypted before being moved to the remote backup server and you can't decrypt them by just possessing the backup server or logins to backup server), but not (IMO) a DC where stuff can be changed.

    @ZeroHour
    The benefit is the DR element. Main school building has burned down / inaccessible / flooded / invaded by fibre-eating hamsters. If I have a remote DC holding a record of everyone's username/passwords/permissions, I can restore a fileserver to a VM, make DHCP available and everyone can magically start logging in on their laptops in said remote building.

SHARE:
+ Post New Thread

Similar Threads

  1. Disaster Recovery
    By pagelad in forum Wireless Networks
    Replies: 5
    Last Post: 11th January 2011, 12:21 PM
  2. Disaster recovery plan
    By andyturpie in forum How do you do....it?
    Replies: 0
    Last Post: 11th March 2010, 10:20 AM
  3. Disaster Recovery
    By GrumbleDook in forum School ICT Policies
    Replies: 7
    Last Post: 8th February 2010, 04:27 PM
  4. Disaster Recovery Questions
    By mikeymoos in forum Wireless Networks
    Replies: 7
    Last Post: 10th December 2009, 06:29 PM
  5. Disaster recovery
    By Chrispy in forum How do you do....it?
    Replies: 5
    Last Post: 23rd May 2006, 11:33 AM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •