Jump to content

Domain Trusts and synch of roaming profiles

Guest pete0085

By Guest pete0085
in Windows 2003 Server

 Share

Recommended Posts

Guest pete0085

Guest pete0085

Posted
Posted

Can we add a 2nd domain controller in Branch 2 (branch2.mycompany.com) so

that the users there would login to that domain instead of logging into the

domain across the WAN? With a lot of staff moving between branch 1 and

branch 2, could we synchronize the roaming profiles from the User Profile

folders between the 2 domain controllers so they would still have the same

desktop and settings if they logged on to the Branch1 Domain or the Branch2

domain.

 

If we added a DC in branch 3 too, could we synchronize roaming profiles

between the three?

 

I think we would somehow need to replicate all the user accounts and groups

to the new DC, because of all of the permissions that are already assigned to

shares, email etc.

 

How would this affect users outlook running exchange 2003?

 

The problem we have are users logging in across the WAN to the main DC with

roaming profiles and login times taking 5, 10, 20 minutes long in some cases.

 

 

Is setting up something like this possible and how about for shared folders?

  • Replies 3
  • Created
  • Last Reply

Popular Days

Popular Days

Guest Anthony

Guest Anthony

Posted
Posted

Re: Domain Trusts and synch of roaming profiles

 

Pete,

I can't think of any reason for a second domain rather than another DC in

the same domain.

You can keep the roaming profiles small by redirecting folders out of it.

You can avoid a slow logon by setting the "slow network detection" speed in

Group Policy.

Roaming profile replication should be OK with DFS Replication in R2, as long

as the profile is relatively small and there is time to replicate:

http://technet2.microsoft.com/WindowsServer/en/library/f9b98a0f-c1ae-4a9f-9724-80c679596e6b1033.mspx?mfr=true.

Hope that helps,

Anthony, http://www.airdesk.com

 

 

 

 

"pete0085" <pete0085@discussions.microsoft.com> wrote in message

news:826304FD-EBC8-445B-B35B-9D52E7ED39DD@microsoft.com...

> Can we add a 2nd domain controller in Branch 2 (branch2.mycompany.com) so

> that the users there would login to that domain instead of logging into

> the

> domain across the WAN? With a lot of staff moving between branch 1 and

> branch 2, could we synchronize the roaming profiles from the User Profile

> folders between the 2 domain controllers so they would still have the same

> desktop and settings if they logged on to the Branch1 Domain or the

> Branch2

> domain.

>

> If we added a DC in branch 3 too, could we synchronize roaming profiles

> between the three?

>

> I think we would somehow need to replicate all the user accounts and

> groups

> to the new DC, because of all of the permissions that are already assigned

> to

> shares, email etc.

>

> How would this affect users outlook running exchange 2003?

>

> The problem we have are users logging in across the WAN to the main DC

> with

> roaming profiles and login times taking 5, 10, 20 minutes long in some

> cases.

>

>

> Is setting up something like this possible and how about for shared

> folders?

>

Guest pete0085

Guest pete0085

Posted
Posted

Re: Domain Trusts and synch of roaming profiles

 

THe problem is not the size of the profiles typicially, it's logging in

across the WAN and when I'm at branch 2 in takes me 5 minutes to log on and

the main branch it takes a few seconds.

 

I've tried redirecting folders, it increases the logon times, but has a

negative side affect. Outlook, word, etc is very slow and will lock up due

to accessing resources back over the WAN.

 

We are wondering if you add a second DC at that location, can they log on to

that domain controller instead of logging in over the WAN and with the two

profiles synchronize at night so when they log on back to the main branch,

all their info will be there.

 

Do you understand what we are trying to accomplish?

 

"Anthony" wrote:

> Pete,

> I can't think of any reason for a second domain rather than another DC in

> the same domain.

> You can keep the roaming profiles small by redirecting folders out of it.

> You can avoid a slow logon by setting the "slow network detection" speed in

> Group Policy.

> Roaming profile replication should be OK with DFS Replication in R2, as long

> as the profile is relatively small and there is time to replicate:

> http://technet2.microsoft.com/WindowsServer/en/library/f9b98a0f-c1ae-4a9f-9724-80c679596e6b1033.mspx?mfr=true.

> Hope that helps,

> Anthony, http://www.airdesk.com

>

>

>

>

> "pete0085" <pete0085@discussions.microsoft.com> wrote in message

> news:826304FD-EBC8-445B-B35B-9D52E7ED39DD@microsoft.com...

> > Can we add a 2nd domain controller in Branch 2 (branch2.mycompany.com) so

> > that the users there would login to that domain instead of logging into

> > the

> > domain across the WAN? With a lot of staff moving between branch 1 and

> > branch 2, could we synchronize the roaming profiles from the User Profile

> > folders between the 2 domain controllers so they would still have the same

> > desktop and settings if they logged on to the Branch1 Domain or the

> > Branch2

> > domain.

> >

> > If we added a DC in branch 3 too, could we synchronize roaming profiles

> > between the three?

> >

> > I think we would somehow need to replicate all the user accounts and

> > groups

> > to the new DC, because of all of the permissions that are already assigned

> > to

> > shares, email etc.

> >

> > How would this affect users outlook running exchange 2003?

> >

> > The problem we have are users logging in across the WAN to the main DC

> > with

> > roaming profiles and login times taking 5, 10, 20 minutes long in some

> > cases.

> >

> >

> > Is setting up something like this possible and how about for shared

> > folders?

> >

>

>

>

Guest Anthony

Guest Anthony

Posted
Posted

Re: Domain Trusts and synch of roaming profiles

 

I understand but I don't think your solution is an answer. You could achieve

the same effect by giving them a separate logon in the same domain. But it

just should not be necessary.

You can add a second DC to the same domain at branch 2. Then if you still

want, you can replicate the profile folder using DFS Replication. You would

set up the profile path to be \\dfsProfiles\%username%, so whichever site

they log in they will pick up the nearest profiles.

Hope that helps,

Anthony, http://www.airdesk.com

 

 

"pete0085" <pete0085@discussions.microsoft.com> wrote in message

news:EC21B610-7C49-44FC-B6FB-DDE6F3D4E4E2@microsoft.com...

> THe problem is not the size of the profiles typicially, it's logging in

> across the WAN and when I'm at branch 2 in takes me 5 minutes to log on

> and

> the main branch it takes a few seconds.

>

> I've tried redirecting folders, it increases the logon times, but has a

> negative side affect. Outlook, word, etc is very slow and will lock up

> due

> to accessing resources back over the WAN.

>

> We are wondering if you add a second DC at that location, can they log on

> to

> that domain controller instead of logging in over the WAN and with the two

> profiles synchronize at night so when they log on back to the main branch,

> all their info will be there.

>

> Do you understand what we are trying to accomplish?

>

> "Anthony" wrote:

>

>> Pete,

>> I can't think of any reason for a second domain rather than another DC in

>> the same domain.

>> You can keep the roaming profiles small by redirecting folders out of it.

>> You can avoid a slow logon by setting the "slow network detection" speed

>> in

>> Group Policy.

>> Roaming profile replication should be OK with DFS Replication in R2, as

>> long

>> as the profile is relatively small and there is time to replicate:

>> http://technet2.microsoft.com/WindowsServer/en/library/f9b98a0f-c1ae-4a9f-9724-80c679596e6b1033.mspx?mfr=true.

>> Hope that helps,

>> Anthony, http://www.airdesk.com

>>

>>

>>

>>

>> "pete0085" <pete0085@discussions.microsoft.com> wrote in message

>> news:826304FD-EBC8-445B-B35B-9D52E7ED39DD@microsoft.com...

>> > Can we add a 2nd domain controller in Branch 2 (branch2.mycompany.com)

>> > so

>> > that the users there would login to that domain instead of logging into

>> > the

>> > domain across the WAN? With a lot of staff moving between branch 1 and

>> > branch 2, could we synchronize the roaming profiles from the User

>> > Profile

>> > folders between the 2 domain controllers so they would still have the

>> > same

>> > desktop and settings if they logged on to the Branch1 Domain or the

>> > Branch2

>> > domain.

>> >

>> > If we added a DC in branch 3 too, could we synchronize roaming profiles

>> > between the three?

>> >

>> > I think we would somehow need to replicate all the user accounts and

>> > groups

>> > to the new DC, because of all of the permissions that are already

>> > assigned

>> > to

>> > shares, email etc.

>> >

>> > How would this affect users outlook running exchange 2003?

>> >

>> > The problem we have are users logging in across the WAN to the main DC

>> > with

>> > roaming profiles and login times taking 5, 10, 20 minutes long in some

>> > cases.

>> >

>> >

>> > Is setting up something like this possible and how about for shared

>> > folders?

>> >

>>

>>

>>

 Share
Go to topic listing
×
×
  • Create New...