I have one subnet 192.168.0.1 To 192.168.0.254. And I have two domains one is design and one is administrative. I want to use one DHCP server for two domains. One WDS and WSUS server for two domain. Is it possible? Both domains are in single forest but separate tree. If possible how will be done.

..........

Yes. Its possible.

One DHCP server can support multiple domain in a forest. As you are using one subnet, one scope will be fine.

One WSUS can also work for multiple domain. Just ensure you are using FQDN of WSUS server in GPO.

For WDS you need to do more planning. If you want to join domain automatically you have to use answer file. Since you have two domain you need to have suitable setup. Check this for more help.

https://social.technet.microsoft.com/Forums/windowsserver/en-US/ae019bf6-72fb-4c98-946d-d555a61364a4/wds-multiple-domains-how-to-set-what-pc-joins-a-certain-domain?forum=winserversetup

Thanks

• Marked as answer by Rahul Kutal Friday, February 13, 2015 1:45 PM

Thanks Vinit.

I have another one question. If both forest are separate. Then is it possible to do above things.

Oh. I am sorry for late reply. I was out of station.

Anyway, DHCP server need to authorize themselves to work in domain environment. To get themselves authorized they need to be DC or member server. Hence one DHCP server can't be authorized in two forest.

However you can also install and configure DHCP on standalone server and they keep on leasing IP address to clients till they find authorized DHCP server. They try every 10 minutes to detect any authorized DHCP. If there are no DHCP servers in any of the forest and client can reach to DHCP server for IP, it will continue to work. Hence theoretically its possible to have a standalone DHCP server for 2 forests but practically its not possible as you must be having authorized DHCP.

For having one WSUS in 2 forest you need lot of planning. To provide location of WSUS server we use domain GPO. But since we are having multiple forest domain GPO won't work. You need to configure local GPO on every clients to point WSUS and make it sure that there is no domain GPO pointing to another WSUS. So pointing right WSUS will be the consideration.

WDS has two modes  Deployment and transport. Deployment requires AD, DNS, DHCP and NTFS. So, this mode won't work for multiple forest. But you can use transport mode and management server like SCCM on top of it to serve two or multi forest architecture.

Hope this helps.

Thanks