- Additional processor and hard drive overhead will be required of the physical hardware, since both applications can be resource-intensive.
- From a security perspective, it's often preferable to separate mission-critical applications onto separate physical devices so that you can reduce the attack exposure on each machine. If your SQL Server is residing on your domain controller and an attacker were able to compromise the physical server using a SQL vulnerability, they would essentially have the "keys to the kingdom" since your sensitive AD information would also be compromised at that point.
Dig deeper on Microsoft Active Directory Design and Administration
Related Q&A from Laura E. Hunter
Active Directory expert Laura E. Hunter offers some advice for changing the IP addresses of domain controllers.continue reading
A Windows administrator moving from Windows Server 2003 to Windows Server 2003 R2 wants to perform a restore of a previous server to a new one ...continue reading
An admin has two domains and two Active Directories. He wants to know how to join the Active Directories so that internal staff can access both, but ...continue reading
Have a question for an expert?
Please add a title for your question
Get answers from a TechTarget expert on whatever's puzzling you.