Go to Password Replication Policy tab and double-click Allowed RODC Password Replication Group. On the right pane, right-click Read-Only Domain Controller computer account and then click Properties. Click Tools -> Active Directory Users and Computers. Prepopulating Passwords On Read-Only Domain Controller Windows Server 2016 Using Server Manager In this guide, we will look into the feature of prepopulating passwords on Read-Only domain controller Windows Server 2016 by using server manager and PowerShell. However, with a built-in feature, you can prepopulate and cache users and accounts on the RODC before they attempt to log in.īefore you prepopulate passwords, it is mandatory that those user and computer accounts are in the list of allowed RODC password replication group. The RODC authenticates the branch users and computers for subsequent logins without forwarding requests to the main (writeable) DC. When a Password Replication Policy is enabled and a user or computer account is in the allowed RODC password replication group, a password is replicated and cached on Read-Only Domain Controller when a branch user login for the first time.
0 Comments
Leave a Reply. |