Home > Articles

  • Print
  • + Share This
This chapter is from the book

Best Practices

  • Don't necessarily set up multiple domains for different remote offices or sites.

  • Purchase the domain namespaces that theoretically could be bought and used on the Internet.

  • Carefully consider using DDNS, especially when integrating with Unix-based DNS.

  • Consider using cross-forest trusts between two disparate Active Directory forests instead of merging the forests.

  • Place the infrastructure master role on a domain controller that isn't also a global catalog.

  • Use the ntdsutil command-line utility to transfer OM roles in disaster recovery situations.

  • Use global groups to contain users in the domain in which they exist but also to grant access to resources in other trusted domains.

  • Use universal groups to contain users from any domain in the forest and to grant access to any resource in the forest.

  • + Share This
  • 🔖 Save To Your Account