Sign in
 
HomeWindows Server 2012Windows Server 2008 R2Windows Server 2003LibraryForums
Windows Server TechCenter >
Active Directory

Answered Active Directory

  • Wednesday, December 12, 2012 4:21 PM
     
     
    Sign In to Vote
    0

    We have 2 servers (Windows Server 2003 and Windows Server 2008 R2).

    I wasn't around when the 2008 server was installed, but it appears the Active Directory was on the 2003 server and when the 2008 server was set up, it was configured to replicate A-D from the 2003. This all works fine and when I make changes on the 2008 server, I see them on the 2003 server.

    I want to eventually remove the 2003 server, so what steps do I need to do to make only the 2008 server handle A-D and be the logonserver? I still want the 2003 server in place (as a member server) for file storage until I get it all moved.

    Thanks.

     

All Replies

  • Wednesday, December 12, 2012 4:30 PM
     
     
    Sign In to Vote
    0
    you would demote the windows 2003 dc after having the maste roles transfered, see http://technet.microsoft.com/en-us/library/cc740017(v=ws.10).aspx (in the bottom are links for example for operation masters, which in turn link to examples how to transfer them). keep in mind that it is best practice to have at least 2 domain controllers, so you might want to replace the 2003 machine with a second windows 2008 machine to be a second domain controller. also, before you demote the old dc, check your clients, they should have dns entries to the windows 2008 dc, else they will fail logon to the domain
     
  • Wednesday, December 12, 2012 5:08 PM
     
     
    Sign In to Vote
    0

    Thanks for the link. Anything need to be done on the 2008 server? Run dcpromo?

     
  • Wednesday, December 12, 2012 5:17 PM
     
     
    Sign In to Vote
    0
    not if the 2008 server is already a domain controller. you can check that in the active directory users and computers management console (coontrol panel, administrative tools). the 2008 server should show up under domain controllers in the management console, you can also rightclick your domain in the console and select change domain controller, all dc's available should be listed there
     
  • Wednesday, December 12, 2012 6:08 PM
     
     
    Sign In to Vote
    0

    I just realized the 2003 is the only one that shows up under domain controllers, so what would need to be done on the 2008? Thanks.

     
  • Wednesday, December 12, 2012 7:42 PM
     
     Answered
    Sign In to Vote
    0

    first youll have to prepare your domain for the 2008 dc, take a look at the follwoing blog for that http://blogs.technet.com/b/askds/archive/2008/11/11/so-you-want-to-upgrade-to-windows-2008-domain-controllers-adprep.aspx

    then youd dcpromo the second server to dc like described here http://technet.microsoft.com/en-us/library/cc753720(v=ws.10).aspx

     
  • Thursday, December 13, 2012 3:20 PM
     
     
    Sign In to Vote
    0

    Thanks for your help. Just to be clear regarding the first link in your most recent post to prepare the domain - that work is to be done on the 2003 server and then dcpromo the 2008 server? After that, I then go back to your first post to demote the 2003?

    Since the AD replication is already happening to the 2008 server,  will the 2008 AD get wiped out during this process and then moved again from the 2003 server? Just curious what to expect.

    Also, if something doesn't go right with this whole process, can I restore my system state on both servers and be back where I started?

    Thanks again.

     
  • Saturday, December 15, 2012 11:56 PM
     
     Answered
    Sign In to Vote
    0

    We have 2 servers (Windows Server 2003 and Windows Server 2008 R2).

    I wasn't around when the 2008 server was installed, but it appears the Active Directory was on the 2003 server and when the 2008 server was set up, it was configured to replicate A-D from the 2003. This all works fine and when I make changes on the 2008 server, I see them on the 2003 server.

    I want to eventually remove the 2003 server, so what steps do I need to do to make only the 2008 server handle A-D and be the logonserver? I still want the 2003 server in place (as a member server) for file storage until I get it all moved.

    Thanks.

    You need to:

    • Make sure that the second DC is a DNS and GC server
    • Transfer FSMO roles to the new DC: http://support.microsoft.com/kb/255504
    • Make the DCs health using dcdiag and the AD replication status using repadmin

    Once done, you can demote the old DC.

    Of course, it is recommended to do system state backups of your DCs before proceeding.

    Note also that client computers / servers that are using the old DC as DNS server should start using the new one as the new DNS server. If they are DHCP clients, this could be updated easily on the DHCP servers. If not, you will need to update the configuration manually.

    Thanks for the link. Anything need to be done on the 2008 server? Run dcpromo?

    If this is not a DC then yes, you need to do a dcpromo and create a new DC in your existing domain. Once done, you can follow my previous sggestion.

    This posting is provided "AS IS" with no warranties or guarantees , and confers no rights.