My organization has deployed 2008 RODCs on multiple seagoing platforms. The idea was to extend our shore-based domain onto our ships to better control security policies. RODCs were selected with the assumption they would consume less bandwidth. There were also security concerns, but these were secondary.
Internet connectivity at sea is provided by a very expensive satellite link. Speeds range from slow to non-existent. Managing users, computers, group and permission changes and GPO updates is excruciatingly slow.
I am beginning to believe that we have developed tunnel vision in regard to RODCs and that having a writable domain controller might be a better alternative. I am thinking one RWDC and one RODC per ship for redundancy. It is a small user base, but it's critical to have redundancy.
There is a lot more to this, but I cannot sum it up with any brevity. I am curious if anyone has ever tested the difference in bandwidth consumption between an RODC and a RWDC? Would replacing one of the RODCs with a RWDC significantly increase bandwidth consumption? I would be redirecting the RODC to replicate from the RWDC. This would mean one domain controller connecting back to shore.
As things sit right now, it can take hours to do things that would normally take minutes. Having admins aboard the ships working on a RWDC would make life much better. The fear is that RWDC chatter would fill the pipe.
So, anyone ever test the difference?