Join Ed Liberman for an in-depth discussion in this video Configure credential caching on an RODC, part of Windows Server 2012 R2: Configure and Manage Active Directory.
- Using read-only domain controllers…in a remote office where you may have low security…can help keep you information intact…by not allowing changes from that location.…But the next step to keeping your data secure…is to limit the amount of password information…that is stored on the read-only domain controller.…This is done through credential caching.…Now in order to show you how credential caching works,…I need to take us into, believe it or not,…one of our writable domain controllers,…not the read-only domain controller.…And the reason why is because,…well, read-only is read-only.…
We can't make changes there.…So DC_3 is our read-only domain controller,…so I have to go into DC-1 or 2.…I'll take us over to DC-1.…Here on DC-1, we're looking at the server manager,…and the first thing I want to do is go up to the Tools menu,…and on the Tools menu we're going to open up…a tool called Active Directory Users and Computers.…Here in Active Directory Users and Computers,…you'll see that we have our landonhotel.local domain,…
Ed Liberman shows how to configure service authentication, domain controllers, and account policies, and maintain Active Directory so that it remains stable and secure. He'll cover virtualizing domain controllers, Active Directory backup and recovery, password policy management, and Kerberos policies and delegation.
- Installing read-only domain controllers
- Configuring virtual domain controllers
- Backing up Active Directory
- Recovering Active Directory
- Configuring account policies: password, lockout, and Kerberos
- Configuring service accounts
- Managing service accounts