RODC password replication and A/D sites and subnets
- by Gregory Thomson
I work at a school district with about 30 school sites.
Windows 2008 A/D setup - all central at the district office.
In A/D, all is under one site, and no subnets defined.
One A/D forest and only one domain under that.
We're now looking to start putting RODCs at the schools to put the authentication and DNS out there closer to them.
I haven't worked with A/D sites and subnets, and only a little with RODC password replication.
But just got an invite to a meeting to talk about this tomorrow...
If we start breaking down the A/D pieces into sites/subnets, can we also use that as a way to help apply an RODC password replication policy in a way that matches so that only each school sites' users passwords are replicated/cached on their RODC?