Documenti di Didattica
Documenti di Professioni
Documenti di Cultura
Replication
Replication ensures that changes to a domain controller are reflected in all domain controllers within a domain.
Directory information is replicated to domain controllers both within and among sites.
The Active Directory database is replicated between domain controllers. The data replicated between controllers
called "data" are also called "naming context". Only the changes are replicated, once a domain controller has
been established. Active Directory uses a multimaster model which means changes can be made on any
controller and the changes are sent to all other controllers. The replication path in Active Directory forms a ring
which adds reliability to the replication.
Replicated update A change made to the replica because of a replication from a replication partner.
Application Directory partition This partition stores dynamic application specific data in Active Directory without
significantly affecting network performance by enabling you to control the scope of replication and the placement
of replicas. The application directory partition can contain any type of object except security principals (users,
groups, and computers). Data can be explicitly rerouted to administrator-specified domain controllers within a
forest in order to prevent unnecessary replication traffic, or it can be set to replicate everything to all domain
controllers in the same fashion as the schema, configuration, and domain partitions.
A domain controller stores and replicates:
The domain partition data (all directory objects and properties) for its domain.
This data is replicated to additional domain controllers in the domain. For the purpose of finding information, a
partial replica containing commonly used attributes of all objects in the domain is replicated to the global catalog.
A global catalog stores and replicates:
A partial replica containing commonly used attributes for all directory objects in the forest (replicated
between global catalog servers only)
A full replica containing all attributes for all directory objects in the domain in which the global catalog is
located
DNS Replication
The DNS IP address and computer name is stored in Active Directory for Active Directory integrated DNS zones
and replicated to all local domain controllers. DNS information is not replicated to domain controllers outside the
domain.
The KCC analyzes the replication topology within a site every 15 minutes to ensure that it still works. If you add
or remove a domain controller from the network or a site, the KCC reconfigures the topology to reflect the
change.
Intersite Replication To ensure replication between sites, you must connect them manually by creating site
links. Site links represent network connections and allow replication to occur. A single KCC per site generates all
connections between sites. Active Directory uses the network connection information to generate connection
objects that provide efficient replication and fault tolerance,
You provide information about the replication transport used, cost of a site link, times when the link is available for
use, and how often the link should be used. Active Directory uses this information to determine which site link is
used to replicate information. Customizing replication schedules so replication occurs during specific times, such
as when network traffic is light, makes replication more efficient.
impact replication traffic has on your WAN. But before you can manage these parameters, you must create a
second site and then move at least one domain controller to this other site.
After youve moved a domain controller to the other site, youll need to create a connection object between the
domain controllers. By default, one is created for you called DEFAULTIPSITELINK, but you can use Active
Directory Sites and Services to create other sites as needed. Once youve created the links between sites, you
can manage the properties of the connection object much like managing the properties of other objects in the
Active Directory database. In short, theres a lot to consider when configuring and managing Active Directory
traffic once your organization starts to encompass multiple geographic locales.
Configuring Preferred Bridgehead Servers
An easy way to think of the bridgehead server is that its the spokesperson for a site. It is the main server used
to send and receive replication information between sites. As shown in Figure 19-20, the bridgehead sends
replication on behalf of the site, and visa versa. By default, one bridgehead server is selected by the Inter-Site
Topology Generator (ISTG) for each site that contains a domain controller, but you can change this selection
using the method outlined next. Normally, you let this background process select the bridgehead server, so this is
yet another area of expertise that you will rarely need to perform in a production environment.