none
Active Directory domain rename

    Question

  • Additional domain controller rename procedure .

    I have around 18 domain controller want to change Ip ADDRESS OF 4 dc what is the procedure.


    Amit Shinde

    Monday, April 09, 2012 4:46 PM

Answers

  • Hello,

    You can change the IP with no problems.

    Just you have to make sure that each server / computer pointing to these DCs as DNS server should point to their new IP addresses as new servers. So, you may have to make some updates.

    If you are planning to rename a DC: http://technet.microsoft.com/en-us/library/cc782761%28v=ws.10%29.aspx

    If you are planning to rename an AD domain: technet.microsoft.com/en-us/library/cc738208(v=ws.10).aspx


    This posting is provided "AS IS" with no warranties or guarantees , and confers no rights.   

    Microsoft Student Partner 2010 / 2011
    Microsoft Certified Professional
    Microsoft Certified Systems Administrator: Security
    Microsoft Certified Systems Engineer: Security
    Microsoft Certified Technology Specialist: Windows Server 2008 Active Directory, Configuration
    Microsoft Certified Technology Specialist: Windows Server 2008 Network Infrastructure, Configuration
    Microsoft Certified Technology Specialist: Windows Server 2008 Applications Infrastructure, Configuration
    Microsoft Certified Technology Specialist: Windows 7, Configuring
    Microsoft Certified Technology Specialist: Designing and Providing Volume Licensing Solutions to Large Organizations
    Microsoft Certified IT Professional: Enterprise Administrator
    Microsoft Certified IT Professional: Server Administrator
    Microsoft Certified Trainer

    Monday, April 09, 2012 4:52 PM
  • Hello,

    to change the ip address from a DC just change it and run ipconfig /flushdns and ipconfig /registerdns and restart the netlogon service.

    After that steps and waiting for replication please check with the support tools dcdiag and repadmin for problems. If the one you have changed is done go on with the next one and wait until this is replicated also and so on.


    Best regards

    Meinolf Weber
    MVP, MCP, MCTS
    Microsoft MVP - Directory Services
    My Blog: http://msmvps.com/blogs/mweber/

    Disclaimer: This posting is provided AS IS with no warranties or guarantees and confers no rights.

    Monday, April 09, 2012 5:25 PM

All replies

  • Hello,

    You can change the IP with no problems.

    Just you have to make sure that each server / computer pointing to these DCs as DNS server should point to their new IP addresses as new servers. So, you may have to make some updates.

    If you are planning to rename a DC: http://technet.microsoft.com/en-us/library/cc782761%28v=ws.10%29.aspx

    If you are planning to rename an AD domain: technet.microsoft.com/en-us/library/cc738208(v=ws.10).aspx


    This posting is provided "AS IS" with no warranties or guarantees , and confers no rights.   

    Microsoft Student Partner 2010 / 2011
    Microsoft Certified Professional
    Microsoft Certified Systems Administrator: Security
    Microsoft Certified Systems Engineer: Security
    Microsoft Certified Technology Specialist: Windows Server 2008 Active Directory, Configuration
    Microsoft Certified Technology Specialist: Windows Server 2008 Network Infrastructure, Configuration
    Microsoft Certified Technology Specialist: Windows Server 2008 Applications Infrastructure, Configuration
    Microsoft Certified Technology Specialist: Windows 7, Configuring
    Microsoft Certified Technology Specialist: Designing and Providing Volume Licensing Solutions to Large Organizations
    Microsoft Certified IT Professional: Enterprise Administrator
    Microsoft Certified IT Professional: Server Administrator
    Microsoft Certified Trainer

    Monday, April 09, 2012 4:52 PM
  • Hello,

    to change the ip address from a DC just change it and run ipconfig /flushdns and ipconfig /registerdns and restart the netlogon service.

    After that steps and waiting for replication please check with the support tools dcdiag and repadmin for problems. If the one you have changed is done go on with the next one and wait until this is replicated also and so on.


    Best regards

    Meinolf Weber
    MVP, MCP, MCTS
    Microsoft MVP - Directory Services
    My Blog: http://msmvps.com/blogs/mweber/

    Disclaimer: This posting is provided AS IS with no warranties or guarantees and confers no rights.

    Monday, April 09, 2012 5:25 PM
  • Thanks for the prompt answers it's working

    Amit Shinde

    Monday, April 09, 2012 5:31 PM
  • It has been well documented at below.

    Change the static IP address of a domain controller  http://technet.microsoft.com/en-us/library/cc794722%28v=ws.10%29.aspx

    http://technet.microsoft.com/en-us/library/cc794931%28v=ws.10%29.aspx


    Awinish Vishwakarma - MVP - Directory Services

    My Blog: awinish.wordpress.com

    Disclaimer This posting is provided AS-IS with no warranties/guarantees and confers no rights.

    Tuesday, April 10, 2012 10:49 AM
    Moderator
  • There is no problem in changing IP address of DC.Just make sure that you have the dc properly configured for the correct IP and site. Also the AD site should be well defined with all the correct subnets associated with the site. Ensure the all domain clients are potinting to correct DNS server.Change all of the clients  to point to the new IP address DC for their preferred DNS server this may be in DHCP options or the TCP/IP settings.If there is any Group policy configured like map drive the same need to be modified.

    Active Directory Sites and Services configuration
    http://technet.microsoft.com/en-us/library/cc730868.aspx

    Changing the IP of the DC will not cause any issue. Follow the below link. http://technet.microsoft.com/en-us/library/cc758579(v=WS.10).aspx

    After you change the IP address of a domain controller(FSMO role holder or ADC), you should run the ipconfig /flushdns & ipconfig /registerdns command to register the host record and dcdiag /fix command to ensure that service records are appropriately registered with DNS or reboot the server once.

    Changing the IP settings of a server does not affect the share resources or shared permissions on that server, if the name resolution structure DNS and WINS settings are correctly configured. However, if network drives(GPO) or passive connections (connections that are made manually from a command prompt or run line) are mapped using the IP address, an update is required.

    For example, if a client computer has G: drive mapped using the following command net use g: \\192.168.0.199\data and the IP address of the server that hosts the Data shared folder is changed from 192.168.0.199 to 192.168.1.200, the new G: drive mapping command should be changed to net use g: \\192.168.1.200\data.

    A better solution would be to ensure that DNS name resolution is working properly and to use the server name, as opposed to the IP address, in the command. For example, if the server name is DC1, the command to map a G: drive to the Data share on the server is net use g: \\dc1\data. It changes only if the server name changes; it is not affected if the IP address of the server changes.

    Hop this helps


    Best Regards,

    Sandesh Dubey.

    MCSE|MCSA:Messaging|MCTS|MCITP:Enterprise Adminitrator | My Blog

    Disclaimer: This posting is provided "AS IS" with no warranties or guarantees , and confers no rights.

    Tuesday, April 10, 2012 11:33 AM
  • Confused on what the title of the problem is, which is Domain Rename.  You don't ask about a domain rename so I am going to skip that part of the answer.

    Active Directory works via DNS, so if you modify the IP Address of your DC's your clients will just need to get the updated address of the DC itself.  So I would recommend changing the TTL of your DC's to a very small number (Say, 5 minutes) and wait for the previous TTL to expire.  Once all your clients have the 5 minute TTL of the DC's you can go and change the DC addresses (I am assuming you are running Active Directory Integrated DNS) thereby the clients will all get the updated change of the DC's ip address within 5 minutes.  IIRC, the DC's will normally have at least an 8 hour TTL and so it would take them that long if they recently contact the DC before the clients would attempt to updated their cache.  Once you have all the DC's updated you can go back and reset the TTL to the previous value.

    Next, you have to ensure that any cleints that are using these DC's, have their nic settings updated to point to the new address of the DC/DNS server.  Otherwise they will never be able to contact the DNS server.

    --
    Paul Bergson
    MVP - Directory Services
    MCITP: Enterprise Administrator
    MCTS, MCT, MCSE, MCSA, Security+, BS CSci
    2008, Vista, 2003, 2000 (Early Achiever), NT4
    http://www.pbbergs.com    Twitter @pbbergs
    http://blogs.dirteam.com/blogs/paulbergson

    Please no e-mails, any questions should be posted in the NewsGroup. This posting is provided "AS IS" with no warranties, and confers no rights.


    Tuesday, April 10, 2012 11:56 AM
    Moderator