Hello all
Not sure where to post this one tbh, thought this group was the closest, so
here goes.
I am trying to configure a lmhosts file to allow users to logon and change
their passwords in a domain/forest that is different to the one that their
computer is in.
I know it is possible to have more than one domain controller entry in a
lmhosts file, i.e.:-
10.10.10.1 MY_DC1 #PRE #DOM:MY_DOMAIN
10.10.10.2 MY_DC2 #PRE #DOM:MY_DOMAIN
10.10.10.3 MY_DC3 #PRE #DOM:MY_DOMAIN
10.10.10.4 MY_DC4 #PRE #DOM:MY_DOMAIN
10.10.10.5 MY_DC5 #PRE #DOM:MY_DOMAIN
However, I am uncertain as to whether it is possible to have more than one
pdc emulator entry i.e. accompany the above entries with the following
entries:-
10.10.10.1 "MY_DOMAIN \0x1b" #PRE
10.10.10.2 "MY_DOMAIN \0x1b" #PRE
10.10.10.3 "MY_DOMAIN \0x1b" #PRE
10.10.10.4 "MY_DOMAIN \0x1b" #PRE
10.10.10.5 "MY_DOMAIN \0x1b" #PRE
The domain we are talking about is an exchange domain/forest. The users of
this exchange system actually have their computer accounts in a different
domain/forest and log onto to their computers with a user account in this
different domain/forest as well. Once logged in to this different domain
they then fire up Outlook and then enter their exchange domain user
credentials. None of the users client computers have been nor will be
configured to query the exchange domain/forest WINS or DNS servers hence the
need for the lmhosts file.
I am trying to build in some tolerance if the pdc emulator is unavailable
and its role needs to be seized to another dc. Does it work that the change
password request will go to all 5 servers and obviously only the pdc
emulator will reply and it will succeed this way. Is my understanding
correct here?
If not, what lmhosts entries will I require to make authentication and
password changing work and tolerant?
Regards
|
Similar Threads
Linear Mode
