locked
Building a New Domain Controller! RRS feed

  • Question

  • I want to build a domain controller using a domain name that is live environment.  I will be using Windows server 2012 R2 and plan on building up a dc, which will hold the information that is currently stored in the current windows 2000 server manually. This means adding about 25 users and about 35 computers, what would be the easiest way to go about this without affecting the current live Domain Controller?
    • Moved by Frank Shen5 Wednesday, June 25, 2014 2:49 PM
    Tuesday, June 24, 2014 1:21 PM

Answers

All replies

  • Your question is unclear.  Please choose one of the following:

    1. You want to introduce a new Windows 2012 R2 domain controller into a Windows 2000-based Active Directory environment, and want to know the approach.
    2. You want to create a new lab environment that somewhat resembles the Windows 2000-based Active Directory environment, and want to know how to do this with out affecting the Windows 2000-based domain that already exists.
    3. Other.  (please rephrase if so)


    Mike Crowley | MVP
    My Blog -- Planet Technologies

    Wednesday, June 25, 2014 6:52 PM
  • I want to build a domain controller using a domain name that is live environment.  I will be using Windows server 2012 R2 and plan on building up a dc, which will hold the information that is currently stored in the current windows 2000 server manually. This means adding about 25 users and about 35 computers, what would be the easiest way to go about this without affecting the current live Domain Controller?
    Usually you don't spin up a new domain/forest unless you really have to, the best way would be to introduce new domain controller(s) into the existing domain/forest and then deprecate domain controller(s) running on a down-level/older operating system.

    So to give a better answer, we need to understand why you want to build a complete new domain/forest?

    Enfo Zipper
    Christoffer Andersson – Principal Advisor
    http://blogs.chrisse.se - Directory Services Blog

    Wednesday, June 25, 2014 7:16 PM
  • Hello,

    you have to start building a new forest and implement everything step by step as Windows 2000 Server cannot be upgraded to Windows Server 2012 R2.

    Or you install as first step a Windows Server 2008 R2 DC/DNS/GC into the existing domain and replicate all user/computers/GPOs to the new server.

    http://msmvps.com/blogs/mweber/archive/2010/02/06/upgrading-an-active-directory-domain-from-windows-server-2000-to-windows-server-2008-or-windows-server-2008-r2.aspx

    If that is done successful you can go on with transferring FSMO roles and demoting the old server. Now the FFL/DFL should be raised at least to Windows Server 2003 better use Windows Server 2008 R2.

    NOW you can add the first Windows Server 2012 R2 into the existing domain and again make this machine DC/DNS?GC and transfer FSMO roles.

    http://msmvps.com/blogs/mweber/archive/2012/07/27/upgrading-an-active-directory-domain-from-windows-server-2008-or-windows-server-2008-r2-to-windows-server-2012.aspx

    That way you can keep accounts etc. in the already live domain.

    Hopefully your domain runs with a FDQN as "domain.local" and not only "domain", as single label domain names require special settings and will run into problems if this is done wrong. http://support.microsoft.com/kb/300684/en-us


    Best regards

    Meinolf Weber
    MVP, MCP, MCTS
    Microsoft MVP - Directory Services
    My Blog: http://msmvps.com/blogs/mweber/

    Disclaimer: This posting is provided AS IS with no warranties or guarantees and confers no rights.

    • Proposed as answer by pbbergs [MSFT] Tuesday, July 1, 2014 11:58 AM
    • Marked as answer by Frank Shen5 Friday, July 4, 2014 2:55 AM
    Tuesday, July 1, 2014 10:42 AM