On 7/25/2012 8:36 AM, miguelvelizven wrote:
>
> Hi everyone.
>
> There�s the following setup:
>
> IDM engine 3.6.1a running on OES 11 and RL 3.6.1a running on Win2003 DC
> server (SP2). Long story short. Everything (user ID, group membership)
> flows from IDM Vault to AD. No publisher channel active.
>
> I�m re-doing an install for a Remote loader due to a Win2003 DC server
> crash. There's a need to deploy a Win2008 server DC also because of Win7
> preferences and policies and ZENworks 11.
>
> My question comes about Where to deploy the Remote Loader. Since
> Win2008 introduces changes in the MS Domain/Forest Environment (schema,
> LDAP, and some others), the question came up as to where the Remote
> Loader should be.
>
> I believe the answer is to leave the RL where it is at the moment, in
> Win2003, since everything flows from eDir to MAD, but i would like to
> hear opinions on the subject.
>
> I read a thread about deploying the pwfilter.dll on the DCs... Do I
> have to deploy them on all of them? Is it necessary to deploy it on all
> of them because of password change traffic comes to the nearest Domain
> controller when issued from a Domain-networked PC?
>
> Thank you!
>
>

You mentioned NO PUBLISHER CHANNEL ACTIVE. In that case there is no need
for the pwdfilter to be installed!