This video looks at how Domain Controllers in Active Directory replicate data between each other. Domain Controllers can either replicate at the site level or between sites. A different approach is used for each because at the site level you want changes to happen quickly. Between sites replication may be reduced and may even be configured to happen only outside business hours. Show Demonstration 12:35 Intrasite replication Intrasite replication happens 15 seconds after a change is made to the Active Directory database. If there are more than 3 hops between Domain Controllers in the one site, then more connections will be made between the Doman Controllers until the hop count is less than 3 between all Domain Controllers. This ensures that a change will reach all Domain Controllers in the one site in less than a minute. Intersite replication Bridge Head
Server Site Links Site Link Cost Site
Transports Knowledge Consistency Checker (KCC) Demonstration Site links are under Inter-Site Transports. Under here are the two folders for IP and SMTP transports. Under IP there may be a site link called DEFAULTSITELINK. This is created automatically when Active Directory is installed. You can use this site link or create a new site link. If you do use this site link, it is recommended that you rename the site link to a more meaningful name. To create a new site link, right click IP or SMTP and select New Site Link. From the wizard you need to select which sites will use that site link. Microsoft recommends that you should not put more than 3 sites in the one site link. In the properties of the site link you can configure the schedule for the site link, how often replication will occur and also the cost that will be used with the site link. If you want to see the connections that have been created automatically or manually between different Domain Controllers, expand down until you reach NTDS. In here you will see all the incoming connections for that Domain Controller. To see the outgoing connections, you can open the properties for NTDS and select the connection tab. If you want to force the KCC to run, right click NTDS settings, select all tasks and then check replication Topology. To force a replication, right click a connection and select replicate now. Even through the connection is incoming only, this will replicate data in both directions. Command line RepAdmin /KCC site:(Site name) To force a replication run the following: RepAdmin /SyncAll This will show the bridge head servers: RepAdmin /BridgeHeads References Credits How are changes made within Active Directory maintained on different domain controllers quizlet?Terms in this set (98) How are changes made within Active Directory maintained on different domain controllers? Multimaster replication is used to replicate changes to other DCs.
How does a multi domain design affect Active Directory?They are used to logically group objects such as computers, users, and printers. Active Directory uses a multi-domain design which means that each domain is independent and can be administered separately. This affects Active Directory operation because each domain has its own security policies and trust relationships.
What type of replication does Active Directory implement between domain controllers?The KCC is a built-in process that runs on all domain controllers and generates replication topology for the Active Directory forest. The KCC creates separate replication topologies depending on whether replication is occurring within a site (intrasite) or between sites (intersite).
How does domain controller work with Active Directory?Domain controllers control all domain access, blocking unauthorized access to domain networks while allowing users access to all authorized directory services. The domain controller mediates all access to the network, so it is important to protect it with additional security mechanisms such as: firewalls.
|