I have a client with two separate locations joined by an always-on VPN connection provided by the ISP, with an existing single Server 2003 SBE server at the main location setup as a file server only with no active directory or domain controlled settings. There are about 25 users that are all currently setup as a workgroup. Over the last 3 months, I have been migrating/upgrading their systems to all run W7 pro with the latest version of Office so that no one is using XP and everyone has the same version of office.
One of the upgrades to come is a new server for the main location as they also have added a server for their finance department and a server to manage their customer info database. Currently, both these servers are also setup as simple file servers. I have already upgraded the other servers to Server 2012 R2 in prep for the main upgrade, but I want to ask if what I am trying to do is too complicated for the number of users.
What I want to do is migrate from the workgroup setup to a domain controlled environment, linking the other servers to the primary server for the purposes of managing the shares more effectively. This server will act as DHCP, DNS, File Server, and WSUS server for the main location. The secondary location will still have the always-on VPN to connect to the file shares, but I was going to also place a server at that location to act as a replicated DC that would also control that site's DHCP, DNS, and downstream WSUS.
Is this more than it needs to be or does this sound like I'm thinking properly for this setup. I was fairly confident in my assessment initially, but the more I've thought about it, I can't shake the feeling that I'm doing something incorrectly here.
Also, for at least the next 12 months, I will also act as the contracted IT staff for this client so anything I create, I will be working with initially. Thanks for the input.