jspωiki
Read-Only Domain Controller
Your trail: 

Overview#

Read-Only Domain Controller (RODC) is a ReadOnly Microsoft Active Directory Domain Controller

The Filtered Attribute Set (FAS) is the set of attributes NOT replicated to an Read-Only Domain Controller. The default FAS contains the following: – ms-PKI-DPAPIMasterKeys – ms-PKI-AccountCredentials – ms-PKI-RoamingTimeStamp – ms-FVE-KeyPackage – ms-FVE-RecoveryPassword – ms-TPM-OwnerInformation Items you place in the FAS aren’t replicated, in case the RODC is placed at a lower security site and then compromised. Therefore, you can add items to the FAS so that they aren’t replicated.

More Information#

There might be more information for this subject on one of the following:

This page (revision-2) was last changed on 22-Sep-2018 10:30 by jim Top

Main page
About
Recent Changes
Tools Page

Lead Pages#

WikiEtiquette
Find pages
Unused pages
Undefined pages
Page Index
News


Site Maintained By -jim

Costs of Wiki

Donations#

If you like Ldapwiki, please consider a donation.

Donation for LDAPWiki


Active Sessions25
Uptime32d, 14h 27m 21s
Number of pages15380

JSPWiki v2.10.1
jspωiki
Please see our Copyright And Intellectual Property Page and Standard Disclaimer Pages!
JSPWiki v2.10.1