Hi All,
we have web servers in the DMZ network, which should authenticate users via LDAPS against our Active Directory. We have an RODC (Server 2016 Core) in the DMZ network, which should forward the LDAP authentication requests to a writable DC. Our problem is that only users can be authenticated via LDAPS whose passwords are cached on the RODC. But we want, that no passwords need to be cached on the RODC. The RODC should always forward the request to a writable DC. Is that possible?