Additional domain controller in remote site
- 
 what server is providing DHCP for the branch PCs? 
- 
 
- 
 @alexntg said: @IT-ADMIN said: @alexntg said: Ok, and what is the primary DNS on each client set to? i set client in the main office to use the main DC for DNS resolving and set branch client to use branch DC for DNS resolving And if you run an nslookup against the branch DC, does it resolve queries? nslookup in branch client machine or branch DC itself ?? 
- 
 @IT-ADMIN said: @alexntg said: @IT-ADMIN said: @alexntg said: Ok, and what is the primary DNS on each client set to? i set client in the main office to use the main DC for DNS resolving and set branch client to use branch DC for DNS resolving And if you run an nslookup against the branch DC, does it resolve queries? nslookup in branch client machine or branch DC itself ?? Nslookup from any client computer, and specify the branch DC as the DNS server. 
- 
 @IT-ADMIN said: @alexntg said: @IT-ADMIN said: @alexntg said: Ok, and what is the primary DNS on each client set to? i set client in the main office to use the main DC for DNS resolving and set branch client to use branch DC for DNS resolving And if you run an nslookup against the branch DC, does it resolve queries? nslookup in branch client machine or branch DC itself ?? Both, actually. 
- 
 when i run nslookup in any branch computer, it resolve successfully but it use the main DNS even if i they have as primary DNS the ADC ip address 
 what anger me is that machines in the branch office neglect the ADC
- 
 @IT-ADMIN said: when i run nslookup in any branch computer, it resolve successfully but it use the main DNS even if i they have as primary DNS the ADC ip address 
 what anger me is that machines in the branch office neglect the ADCWhat happens when you force nslookup to use the branch server? 
- 
 @Dashrender said: what server is providing DHCP for the branch PCs? Again, what server is providing DHCP to the branch PCs? Is the scope set correctly to give the PC's the DNS of the branch DNS server. 
- 
 @alexntg said: @IT-ADMIN said: when i run nslookup in any branch computer, it resolve successfully but it use the main DNS even if i they have as primary DNS the ADC ip address 
 what anger me is that machines in the branch office neglect the ADCWhat happens when you force nslookup to use the branch server? really i didn't try that, but tomorrow i will go to the branch office and try this, thank you 
- 
 @IT-ADMIN said: @alexntg said: @IT-ADMIN said: when i run nslookup in any branch computer, it resolve successfully but it use the main DNS even if i they have as primary DNS the ADC ip address 
 what anger me is that machines in the branch office neglect the ADCWhat happens when you force nslookup to use the branch server? really i didn't try that, but tomorrow i will go to the branch office and try this, thank you You can try it from your computer, even. Just force nslookup to use the branch DC. 
- 
 @Dashrender said: @Dashrender said: what server is providing DHCP for the branch PCs? Again, what server is providing DHCP to the branch PCs? Is the scope set correctly to give the PC's the DNS of the branch DNS server. yes, the DHCP is providing the correct DNS setting which is the ip of my ADC as primary DNS and the internet gateway as secondary DNS 
- 
 @IT-ADMIN said: @Dashrender said: @Dashrender said: what server is providing DHCP for the branch PCs? Again, what server is providing DHCP to the branch PCs? Is the scope set correctly to give the PC's the DNS of the branch DNS server. yes, the DHCP is providing the correct DNS setting which is the ip of my ADC as primary DNS and the internet gateway as secondary DNS For the branch site, the DC should be primary DNS, and the DC at your main location should be secondary. Non-AD DNS sources should not be used. 
- 
 @IT-ADMIN said: @Dashrender said: @Dashrender said: what server is providing DHCP for the branch PCs? Again, what server is providing DHCP to the branch PCs? Is the scope set correctly to give the PC's the DNS of the branch DNS server. yes, the DHCP is providing the correct DNS setting which is the ip of my ADC as primary DNS and the internet gateway as secondary DNS Internet gateway? No it must be the other DC. 
- 
 @alexntg said: @IT-ADMIN said: @Dashrender said: @Dashrender said: what server is providing DHCP for the branch PCs? Again, what server is providing DHCP to the branch PCs? Is the scope set correctly to give the PC's the DNS of the branch DNS server. yes, the DHCP is providing the correct DNS setting which is the ip of my ADC as primary DNS and the internet gateway as secondary DNS For the branch site, the DC should be primary DNS, and the DC at your main location should be secondary. Non-AD DNS sources should not be used. I use them but only for tertiary and quaternary DNS options and only when I have only two DCs. 
- 
 We use a 5 DCs at our main office and branches have no DCs. Since I use PDQ for package deployment and I use a separate Group Policy for each branch. I have never had an issue with our T1 Connections. You can use AD Sites and Services to create a new site for the branch and just build the second DC at your main office. I really don't see why you need a second DC at the branch, user authentication and group policy don't use much bandwidth at all. I bet your branch users are still accessing their shares and applications over the WAN. Which uses much more resources than AD would ever use. 
- 
 We use central AD only as well. 
- 
 @scottalanmiller said: @alexntg said: @IT-ADMIN said: @Dashrender said: @Dashrender said: what server is providing DHCP for the branch PCs? Again, what server is providing DHCP to the branch PCs? Is the scope set correctly to give the PC's the DNS of the branch DNS server. yes, the DHCP is providing the correct DNS setting which is the ip of my ADC as primary DNS and the internet gateway as secondary DNS For the branch site, the DC should be primary DNS, and the DC at your main location should be secondary. Non-AD DNS sources should not be used. I use them but only for tertiary and quaternary DNS options and only when I have only two DCs. Using non-AD DNS in an AD enviornment can lead to kerberos errors and other fun, erratic behavior. 
- 
 Yes. Using non-AD DNS is a more expert option. Just going to make things harder. Stick with integrated AD / DNS. 
- 
 @scottalanmiller said: Yes. Using non-AD DNS is a more expert option. Just going to make things harder. Stick with integrated AD / DNS. yes of course i set my ADC to be DNS server, i think that this issue have no solution because i think i have everything set correctly whether it be physical and logial, 
 i will bring that ADC from the branch office and content myself with only one DC in the main office.
- 
 Two in the main office is good. 




