Managing Active Directory Sites and Subnets in Server 2022
Posted on 18th June 2023
Introduction
Active Directory Sites and Subnets is a Microsoft Windows Server 2022 feature that allows organizations to manage their Active Directory environment more effectively. Sites and Subnets allow administrators to segment their network into logical groups, which can then be managed more easily and securely.
Sites and Subnets can be used to segment an organization’s network into different geographical locations, departments, or even different security zones. By segmenting the network in this way, administrators can more easily and securely manage Active Directory objects and resources. Sites and Subnets can also be used to improve Active Directory performance by replicating only the Active Directory objects that are needed in each location.
Creating an Active Directory Site
To create an Active Directory Site, open the Active Directory Sites and Services console and select the site container. In the Actions pane, click on New Site.
In the New Site dialog box, enter a name for the new site and click OK.
Creating an Active Directory Subnet
To create an Active Directory Subnet, open the Active Directory Sites and Services console and select the subnet container. In the Actions pane, click on New Subnet.
In the New Subnet dialog box, enter the IP address range for the new subnet and click OK.
Assigning an Active Directory Site to an Active Directory Subnet
To assign an Active Directory Site to an Active Directory Subnet, open the Active Directory Sites and Services console and select the subnet that you want to assign to a site. In the Actions pane, click on Properties.
In the Subnet Properties dialog box, select the site that you want to assign to the subnet from the Site drop-down list and click OK.
Creating an Active Directory Site Link
To create an Active Directory Site Link, open the Active Directory Sites and Services console and select the site link container. In the Actions pane, click on New Site Link.
In the New Site Link dialog box, enter a name for the site link and select the sites that you want to include in the link. Click OK to create the site link.
Configuring Active Directory Replication
Active Directory replication can be configured in the Active Directory Sites and Services console. To configure replication, open the console and select the site that you want to configure replication for. In the Actions pane, click on Properties.
In the Site Properties dialog box, select the Replication tab. From here, you can configure the options for replication, including the frequency of replication and the transport method.
Conclusion
Active Directory Sites and Subnets is a powerful tool that can help organizations manage their Active Directory environment more effectively. By segmenting the network into logical groups, administrators can more easily and securely manage Active Directory objects and resources. Sites and Subnets can also be used to improve Active Directory performance by replicating only the Active Directory objects that are needed in each location.
You can use the Active Directory Sites and Services tool to manage the replication topology for your Active Directory domain. This tool allows you to:
-Create and configure sites
-Create and configure site links
-Configure replication schedules
-Configure replication transport
-View the replication topology
Creating and Configuring Sites
Sites represent the physical structure of your network. A site typically corresponds to a physical location, such as a building or a campus. Sites are used to control Active Directory replication traffic.
To create a new site:
1. In the Active Directory Sites and Services tool, expand Sites.
2. Right-click Sites, and then click New Site.
3. In the New Object – Site dialog box, type a name for the site.
4. In the Site object box, type the site object for the new site.
5. In the Location box, type a description of the site’s location.
6. Click OK.
Creating and Configuring Site Links
Site links are used to connect sites. Replication traffic is routed over site links.
To create a new site link:
1. In the Active Directory Sites and Services tool, expand Sites.
2. Right-click Inter-Site Transports, and then click New Site Link.
3. In the New Object – Site Link dialog box, type a name for the site link.
4. In the Sites in this site link box, add the sites that you want to include in the site link.
5. In the Cost box, type a cost value for the site link. The cost is used to determine the replication path.
6. In the Replication schedule box, click the schedule that you want to use for replication over this site link.
7. In the Transport box, click the transport that you want to use for replication over this site link.
8. Click OK.
Configuring Replication Schedules
Replication schedules determine when replication can occur over a site link. By default, replication can occur every 180 minutes.
To change the replication schedule for a site link:
1. In the Active Directory Sites and Services tool, expand Sites.
2. Expand Inter-Site Transports.
3. Click the site link that you want to modify.
4. In the Details pane, double-click the replication schedule that you want to change.
5. In the Edit Attribute dialog box, type the new replication schedule, and then click OK.
Configuring Replication Transport
Replication transport determines how replication traffic is routed over a site link. By default, replication traffic is routed using the Remote Procedure Call (RPC) over IP protocol.
To change the replication transport for a site link:
1. In the Active Directory Sites and Services tool, expand Sites.
2. Expand Inter-Site Transports.
3. Click the site link that you want to modify.
4. In the Details pane, double-click the replication transport that you want to change.
5. In the Edit Attribute dialog box, click the new replication transport, and then click OK.
Viewing the Replication Topology
The Active Directory Sites and Services tool includes a graphical view of the replication topology. This view can be useful for diagnosing replication problems.
To view the replication topology:
1. In the Active Directory Sites and Services tool, expand Sites.
2. Expand the site for which you want to view the replication topology.
3. Expand the server object for a domain controller in the site.
4. Expand the NTDS Settings object.
5. Double-click the replication topology.
6. In the Replication Topology dialog box, click View and then click Topology Diagram.
