AD LDS 101 – Part 6 – How to Replicate Your AD LDS Instances

If you have been keeping up with my AD LDS 101 series, you have seen how to perform a number of tasks in getting your AD LDS instance set up and synchronized with your Active Directory domain controller. At this point, it is only logical to show you how you can replicate the synchronized data to other AD LDS instances that you have set up in your environment.

Instance replication is very simple and a highly effective way to get your data synchronized across distributed instances in your organization. There are many reasons for performing this replication, the main reason, in my experience, being failover and redundancy in the event of a failure with one of your valued AD LDS instances. Below is a step-by-step guide on replicating your instances.

Replicating AD LDS Instances

Replicating your AD LDS instances can be useful in a distributed environment or where high availability is required. To replicate the instance you created from the steps in this guide, please use the following steps. Note that the Active Directory Lightweight Directory Services role will need to be installed on the server that will host the replicated AD LDS instance.

1. On the server where the replicated AD LDS instance will reside, go to Start –> Administrator Tools  –> Active Directory Lightweight Directory Services Setup Wizard.

   Click Next.

2. Under Setup Options, select the option for “A replica of an existing instance”

   Click Next.

3. Provide a name for the replica instance.

   Click Next.

4. AD LDS will select a port for this instance unless you input a port of your own specification.

   Click Next.

5. Enter the server and port information for the AD LDS instance that will provide the data for replication.

   Click Next.

6. Select an administrative user who will have privileges over the configuration set for the replicated instance.

   Click Next.

7. Select the partition that will be replicated to this instance.

   Click Next.

8. Leave the file locations as the default unless requirements dictate otherwise.

   Click Next.

9. Under Service Account Selection, make a selection appropriate to your environment.

• Network service account if you are using AD LDS as a stand-alone instance and the end point is not a domain controller.
• This account with its associated User name/password if you are installing AD LDS on a domain controller.

Attention:If you select Network service account, you must add the passPrompt flag when installing the AD LDS Synchronization configuration XML file. You can avoid this by selecting This Account with the User name and Password for an Administrative user.

If you select Network service account, the following warning may appear.

Click Yes to continue.

1. Click Next to select the account and display the AD LDS Administrators dialog box.

1. Under Ready to Install check the details of the replicated instance and then click Next to begin the installation.
   
   
   
2. Once the installation has completed successfully, click Finish and open ADSI Edit. Within ADSI Edit, connect to the newly replicated instance to see that all data has been properly replicated.

After this final step, my hope is that you have colored your hair silver, popped a cigar in your mouth and exclaim, “I love it when a plan comes together!” If you have, then your AD LDS instance has been fully replicated. Please let me know if you have any questions, comments or see any changes that need to be made.

Tagged as: Active Directory, AD LDS 101, ad lds primer, ADAM 101, adam primer, Doug Manger, LDAP, Replicated AD LDS Instances, Replication