About three months ago, we installed a new server running Windows Server 2012 (Std.) at a branch office. The server is running the following roles: File Services (including File Server Resource Manager FSRM), Print Server, and DHCP server. Since the installation we noticed through our WAN monitoring (netflow) that there is a substantial increase in the amount of traffic between this new server and our two domain controllers (Server 2008 R2 std.). The two domain controllers are located at our headquarters over the WAN.
I can see in Netflow that the traffic is being labeled LDAP. I noticed on the new 2012 server there are a few event errors pointing to the issue of "claims" not being available on the domain (Event ID 12339 and 12344). We're not using Dynamic Access Control or central access policies. When I run Network Monitor on the new 2012 server, I see SMB and SMB2 traffic between the file server and domain controller(s), but that's about it.
I'm wondering if others have seen this issue I'm experiencing. At the moment, I'm leaning towards the traffic increase being Server 2012 FSRM trying to sync claims and policies which don't exist. I will likely remove FSRM from Server 2012, but I wanted to get others' input first.
Thanks,
Brian