Azure DC for multiple locations

Joel Eggleton 0 Reputation points
2024-03-26T23:57:25.0766667+00:00

I have a client that has multiple locations. The only servers they have are in Azure. This means that the only DNS server for 14 locations is located across IPSEC VPNs to Azure. This is getting to be problematic. Since we have no servers in any of the locations, does anyone have recommendations for how to optimize this configuration? Google searching is not coming up with anything useful.

Windows Server
Windows Server
A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.
13,097 questions
Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
6,552 questions
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. Marcin Policht 24,450 Reputation points MVP
    2024-03-27T00:33:22.7233333+00:00

    Is the only reason for having AD is to provide DNS services?

    If so, implement private DNS zones instead.

    If not, you can still actually use private DNS zones in AD environment. For details, refer to https://mwesterink.wordpress.com/2023/03/09/running-active-directory-domain-services-using-an-azure-private-dns-zone-and-an-azure-dns-private-resolver-does-it-work/

    Otherwise, deploy additional domain controllers in other regions. Regarding the sizing, that would depend on how busy your environment is, but considering your description, this shouldn't be a significant factor. You should actually do this anyway to provide sufficient resiliency.


    If the above response helps answer your question, remember to "Accept Answer" so that others in the community facing similar issues can easily find the solution. Your contribution is highly appreciated.

    hth

    Marcin


Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.