What happens if all the DC in a site fails?

Biswajeet Kumar 121 Reputation points
2020-10-12T09:40:20.9+00:00

We are in a process to migrating DC from legacy to 2019. I wanted to know where does the load goes if all the DCs in a Site fails or demoted?

Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
6,406 questions
{count} votes

3 answers

Sort by: Most helpful
  1. Hannah Xiong 6,276 Reputation points
    2020-10-13T03:35:56.49+00:00

    Hello,

    Thank you so much for posting here.

    By default, clients who cannot authenticate with DC's in their site, will try to authenticate with DC's in other sites. By default clients will use any available domain controller, unless the Group Policy setting is enabled: Try Next Closest Site

    Then the client leverages the Windows DC Locator Process to identify domain controllers using a combination of AD site cost data and DNS LDAP weights/priorities.

    References:

    https://learn.microsoft.com/en-us/windows-server/identity/ad-ds/plan/enabling-clients-to-locate-the-next-closest-domain-controller

    https://learn.microsoft.com/en-us/archive/blogs/askds/sites-sites-everywhere

    For any question, please feel free to contact us.

    Best regards,
    Hannah Xiong

    ============================================

    If the Answer is helpful, please click "Accept Answer" and upvote it.
    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

    1 person found this answer helpful.
    0 comments No comments

  2. Anonymous
    2020-10-12T11:26:14.033+00:00

    Assuming the clients have the address of a domain controller for another site they could authenticate there, so check the DHCP server config.

    --please don't forget to Accept as answer if the reply is helpful--

    0 comments No comments

  3. Thameur-BOURBITA 32,831 Reputation points
    2020-10-15T09:09:27.713+00:00

    Hi,

    If all domain controllers in same are offilne , it generate a authentication issue if there is no network flow opened woth other DC in snother active directory site.

    You can encounter a DNS issue if all clients use local domain controllers for DNS resolution.

    Don't forget to mark this reply as answer if it help you to fix your issue

    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.