Please start any new threads on our new
site at https://forums.sqlteam.com. We've got lots of great SQL Server
experts to answer whatever question you can come up with.
| Author |
Topic |
|
steveo
Starting Member
16 Posts |
 Posted - 2002-07-15 : 17:41:46
|
| I'm in the process of setting up a 2-node active/active SQL cluster.From what I can see in the install steps, the cluster service has to run under a 'domain' account.I do have a single domain server on my network...but just one. This then becomes a single point of failure for the cluster to start? What happens if the domain controller fails...can't start cluster or can't failover properly?I don't have another machine to act as a secondary domain controller on the network right now so my thought is to just make the new SQL cluster machines primary and secondary domain controllers.Will this work?Will it cause any problems?STEVE |
|
|
MichaelP
Jedi Yak
2489 Posts |
Posted - 2002-07-15 : 18:45:07
|
| Are you using active directory? If so, you probably DO NOT want your cluster machines setup as AD Domain controllers because it will bog them down too much.With our setup, we have 2 AD domain controllers which are not a part of a cluster. It's been working like a champ.Michael<Yoda>Use the Search page you must. Find the answer you will. |
 |
|
|
shsmonteiro
Constraint Violating Yak Guru
290 Posts |
Posted - 2002-07-15 : 19:37:55
|
| Hi,Yes, you have a SPF in your Cluster:If your PDC is out, AND your cluster fails, first of all you are in troubles, because something is wrong with your env; second your cluster will cannot validate its start account, so it will not start. You SHOULD HAVE a BDC, but...In a Cluster Solution, its not recommended configure DB Cluster machine, as Domain Controllers, but you can... if you don't worry to pay the price: Performance and Security.1) Performance may suffer if Cluster members are Domani Controller, because DCs have security constraints; and2) Security is a concern, because if an attacker gain access to you SQL (through a buffer overflow, or another stuff...), he can go inside your net and give you a big headache.If your clustermachine is not inteded to perform DCrole, but serves only as a PDC and PBC for each other, it's ok, but still not recommended.Good Look.Sérgio Monteiro |
|
|
|
steveo
Starting Member
16 Posts |
Posted - 2002-07-16 : 13:43:50
|
| So maybe I would be better off making one of my web/app servers a backup domain controller for the primary that is not part of the cluster?Will being a BDC greatly degrade the performance of a web/app server?It's a small network (only 6 machines) and the domain contoller is really only there for the purposes of the cluster machines. |
|
|
|
shsmonteiro
Constraint Violating Yak Guru
290 Posts |
Posted - 2002-07-16 : 14:35:26
|
| Steve,The same security problem I pointed out in my previous post, is present at more large sacel when you put a web server as a PDC or BDC. If this is your only other possibility, then sadly, put the DCs on the SQL Machines.Sérgio Monteiro |
|
|
|
|
|
|
|
|
2-node Cluster and Domain Controller