This is a brand new company, we are young and growing fast. I just came aboard and we are rebuilding the network. Currently we have one domain, not very well enforced with little restriction on anything ( this drives me crazy ). The remote office and laptops have pretty much free reign on everything, use workgroups, choose if they want to log into the domain, etc. We'd like to change this and I'd like to make use of Active Directory as its mainly a Windows based network. What would you recomend as a base layout of the Forest and Domain structure?
We have three sites, the main office [mainoffice.local] <- point to point -> the sattelite office [workgroups & domain clients], and a large group of laptops floating around the country using Aircards.
Should I create 2 domains in main forest, 1 for mainoffice and satellite office with limited trusts. Then in a seperate forest create a third domain for the roaming employees? I don't understand AD well enough to implement this on such a large scale so any suggestions or ideas on how to set this up would be appreciated.
Also any links you've found to be helpful in designing large scale Ad implementations would be an added rad.![Smile :) :)](data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7)
We have three sites, the main office [mainoffice.local] <- point to point -> the sattelite office [workgroups & domain clients], and a large group of laptops floating around the country using Aircards.
Should I create 2 domains in main forest, 1 for mainoffice and satellite office with limited trusts. Then in a seperate forest create a third domain for the roaming employees? I don't understand AD well enough to implement this on such a large scale so any suggestions or ideas on how to set this up would be appreciated.
Also any links you've found to be helpful in designing large scale Ad implementations would be an added rad.