Hi all,
We have got a remote location with 2 RODC. There is a link which from time to time goes down and people cannot log-on anymore.
I thought that putting a RODC there and adding the computers and users to the "Allowed RODC Password Replication Group" would be enough. However, this doesn't work.
The architecture is like this:
-- writable DCs in the headquarter
-- RODCs in the remote site
-- the remote site has it's own Internet connection, without any proxy.
-- the name resolution for Internet(www.google.com, etc.) and for internal resources is done via RODC which passes the requests to HQ-based DCs
-- the fact the Internet names are also resolved by RODCs, when the link is down==> no Internet access :-(
So, my questions are:
-- how could i modify the current environment to allow people to browse the internet when the link is down and there is no name resolution?
--what else shall i do to allow people to logon using AD credentials when the link is down?
Thanks for any suggestion,