none
How do I create multiple tree domains under a forest domain

    Question

  • Hi,
    I was wondering how to create multiple domains under the same forest in windows server 2008.  I saw the command /newdomain:tree but it is giving us command not found.  Would anyone know the correct syntax or a way other than command line to create another domain under the same forest?
    Thursday, September 24, 2009 8:33 PM

Answers

  • Hi Proline1000

    AFAIK , you cannot create multiple domains on a single DC , but you can create multiple SMTP domains . And the behavior which you are experiencing is correct, running dcpromo  second time demotes the exisiting DC because windows doesnt allow creation of additional Domain on same DC .


    sainath !analyze
    Tuesday, September 29, 2009 1:01 AM
    Moderator

All replies

  • hi proline 1000,

    The question is pretty broad, please make sure you have appropriate infrastructure defined at the first palce.

    why would you need 2 domains

    do you have appropriate clients / sites connecting to the domain ?

    Replication stratergies

    Policies which you should defined and the trust you need to create


    sainath !analyze
    Friday, September 25, 2009 4:07 AM
    Moderator
  • Hi there --

    The topic "Installing a New Domain Tree" ( http://technet.microsoft.com/en-us/library/cc733006(WS.10).aspx ) at Microsoft TechNet provides three procedures for doing this using different methods:

    Installing a New Windows Server 2008 Domain Tree by Using the Windows Interface


    Installing a New Windows Server 2008 Domain Tree by Using the Command Line


    Installing a New Windows Server 2008 Domain Tree by Using an Answer File

     

    Friday, September 25, 2009 10:15 PM
  • Sainath,
    We will need to be able to create multiple domains on a single domain controller to be able to provide hosted services such as outlook.  We will need to be able to have our Forest and add multiple trees to that.  We are running windows server 2008 and have ran dcpromo.  We chose to create a new domain which would be the only option as we cannot choose to add to an existing forest.  With server 2003 you could run dcpromo and add another domain from there.  On 2008, dcpromo will just demote the domain controller.  From command line, we either have the wrong syntax, yes James I looked at that page prior to creating this thread and thank you, but it still did not work.  What is the correct syntax or is there something else I can do to create trees within the forest?
    Monday, September 28, 2009 6:39 PM
  • Hi Proline1000

    AFAIK , you cannot create multiple domains on a single DC , but you can create multiple SMTP domains . And the behavior which you are experiencing is correct, running dcpromo  second time demotes the exisiting DC because windows doesnt allow creation of additional Domain on same DC .


    sainath !analyze
    Tuesday, September 29, 2009 1:01 AM
    Moderator
  • Hi,
    I was wondering how to create multiple domains under the same forest in windows server 2008.  I saw the command /newdomain:tree but it is giving us command not found.  Would anyone know the correct syntax or a way other than command line to create another domain under the same forest

    Hi

    My team is facing the same issue. I need to know how to add / merge four independent and different domain together to build a single forest. If we elaborate the scenario than just imagine four different company/domain merge together, so we need to build a forest which will have all these four domains connected and trusted under the same forest.


    I have passed Microsoft 070-270 Exam on last 13th December 2007 but still i have not got MCP ID.
    Friday, March 18, 2011 2:48 PM
  • Hi,
    I was wondering how to create multiple domains under the same forest in windows server 2008.  I saw the command /newdomain:tree but it is giving us command not found.  Would anyone know the correct syntax or a way other than command line to create another domain under the same forest

    Hi

    My team is facing the same issue. I need to know how to add / merge four independent and different domain together to build a single forest. If we elaborate the scenario than just imagine four different company/domain merge together, so we need to build a forest which will have all these four domains connected and trusted under the same forest.


    I have passed Microsoft 070-270 Exam on last 13th December 2007 but still i have not got MCP ID.


    If your question is how to consolidate multiple Active Directory domains into a newly built forest, and not an Exchange/SMTP domain question, as the original poster of this thread had asked, then you need to look at the Active Directory Migration Tool (ADMT) to help migrate all user accounts, group accounts, computer accounts, etc, into the new domain from all the other domains.

    If that is what you are asking, just an FYI, there is more to this than it appears, and is not as easy as it seems and requires some expert knowledge of Active Directory. Here's more info about the ADMT tool. Please fully read up on the requirements. If Exchange email is involved, then it also requires migrating mailbox data from the source domains to the new target domain.

    Here aer some of my notes on this elaborate subject. I hope you find them helpful. In many cases with large migrations such as this, it may be helpful to employ/contract the work to someone's that does it frequently to help you and your company.

    ==================================================================
    ==================================================================
    Consolidating multiple domains, whether separate forests or the same forest, Exchange or no Exchange

    Are the source domains in separate forests or the in same forests?

    If the source domains are in the same forest, you can use move users between domains, then move their mailboxes to the Exchange server in the target domain, then replicate any public folders, including system and hidden folders and re-target them to the Exchange server in the target.

    If the source domains are in the separate forests, it involves performing a migration using ADMT to migrate
    users first to the target domain, which populates the users accounts in the
    target domain, then second, move mailboxes inter-org, which moves the
    mailboxes to the user accounts which you've already migrated with ADMT,
    that you've kept the same alias names from the source domain, which the move-mailbox command uses when it seeks out target mailbox enabled accounts to move mailboxes to. This can be a bit of an involved procedure, depending on your comfort level, as well as the size of the org(s). Depending on the size of the org(s), and not familiar with the technologies, it may be easier to hire a qualified consultant to perform the tasks.

    If you have a multi-segemented infrastructure (remote locations), I recommend installing WINS for ease of network and printer browsing and NetBIOS name connectivity.

    How To Install a WINS server:
    http://technet2.microsoft.com/windowsserver/en/library/e4d3c3d8-a846-49b9-aac6-e04f2907aac51033.mspx

    Once consolidated into the one target domain, then you will want to make sure a DC exists at each location, as well as make each DC a GC.

    Global Catalog vs. Infrastructure Master
    "If a single domain forest, you can have all DCs a GC. If multiple domains, it is recommended for a GC to not be on the FSMO IM Role, unless you make all DCs GCs," which is now the accepted design standard.
    http://msmvps.com/blogs/ulfbsimonweidner/archive/2005/03/08/37975.aspx

    Phantoms, tombstones and the infrastructure master role conflict with a global catalog in a multi-domain forest, however in a single domain forest, all DCs are recommended to be GCs.
    http://support.microsoft.com/kb/248047

    FSMO placement and optimization on Active Directory domain controllers:
    http://support.microsoft.com/kb/223346


    Read more on migration...

    (Links updated 3/12/10)

    Active Directory Migration Using ADMT 3.1
    http://www.sivarajan.com/admt.html

    Active Directory Computer Migration - Things to Consider:
    http://www.sivarajan.com/cm.html

    ADMT v3.1 Guide: Migrating and Restructuring Active Directory Domains
    http://www.microsoft.com/downloads/details.aspx?familyid=6D710919-1BA5-41CA-B2F3-C11BCB4857AF&displaylang=en

    Active Directory Migration Tool version 3.1
    http://www.microsoft.com/downloads/details.aspx?familyid=AE279D01-7DCA-413C-A9D2-B42DFB746059&displaylang=en

    Password Export Server version 3.1 (x86)
    http://www.microsoft.com/downloads/details.aspx?familyid=F0D03C3C-4757-40FD-8306-68079BA9C773&displaylang=en

    Password Export Server version 3.1 (x64)
    http://www.microsoft.com/downloads/details.aspx?familyid=5B4E5C61-1C00-4DA7-9C0D-130200AED21A&displaylang=en

    Domain Migration Cookbook - Index and Cover:
    http://www.microsoft.com/technet/prodtechnol/windows2000serv/deploy/cookbook/cookintr.mspx

    ADMT requires a two way trust between the forests - Create a trust between
    the two forests
    http://technet.microsoft.com/en-us/library/cc780479.aspx

    MIgrating AD to a new forest - Meinolf Weber
    http://msmvps.com/blogs/mweber/archive/2010/03/25/migrating-active-directory-to-a-new-forest.aspx


    --------------------------------------------------------------------------------
    For Exchange mailbox moves...

    You Had Me At EHLO... : Exchange 2007 Cross Org Mailbox MigrationExchange
    Migration Wizard was used to perform this task in Exchange 2003. Exchange
    2007 has incorporated Cross Org migrations into the ...
    http://msexchangeteam.com/archive/2006/11/02/430289.aspx

    If Exchange 2003 is involved, you can use the Exmerge tool. If Exchange 2007
    is involved, you would need to use the MoveMailbox method from the source
    org to the target org after
    migrating user accounts.

    This is a weak overview of the mailbox move:
    http://itknowledgeexchange.techtarget.com/itanswers/inter-forest-exchange-migration-from-exchange-2003-to-exchange-2007/

    How to Move a Mailbox Across Forests
    http://technet.microsoft.com/en-us/library/aa997145.aspx

    AD and Exchange Consolidation
    http://itknowledgeexchange.techtarget.com/itanswers/ad-and-exchange-consolidation/

    Deciding to Consolidate Exchange Messaging Systems
    http://technet.microsoft.com/hi-in/library/bb124206(en-us,EXCHG.65).aspx

    Server Consolidation Recommendations
    http://technet.microsoft.com/hi-in/library/aa998499(en-us,EXCHG.65).aspx

    If using the Quest tools (recommended), read this for an idea of what to
    expect, time per GB, etc. Thread: QMM throughput question
    http://migration.inside.quest.com/thread.jspa?messageID=27243

    I hope that helps.
    ==================================================================
    ==================================================================

     

    Ace


    Ace Fekay
    MVP, MCT, MCITP EA, MCTS Windows 2008 & Exchange 2007 & Exchange 2010, Exchange 2010 Enterprise Administrator, MCSE & MCSA 2003/2000, MCSA Messaging 2003
    Microsoft Certified Trainer
    Microsoft MVP - Directory Services

    This posting is provided AS-IS with no warranties or guarantees and confers no rights.

    Saturday, March 19, 2011 4:50 PM