Migrarte DC WK 2008 R2 to WK 2019 question / Issue
Question
Answers
All replies
-
Hello Nick,
Thank you for posting in our TechNet forum.
As Dave mentioned, the minimum requirement to add a Windows Server 2019 Domain Controller is a Windows Server 2008 functional level. The domain also has to use DFS-R as the engine to replicate SYSVOL.
For more information, we could refer to: https://docs.microsoft.com/en-us/windows-server/identity/ad-ds/active-directory-functional-levels
We can check if the SYSVOL folder replication type is DFSR by viewing the following registry on the existing DC.
HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\DFSR\Parameters\SysVols\Migrating Sysvols\LocalState registry subkey.
If this registry subkey exists and its value is set to 3 (ELIMINATED), DFSR is being used.
If the subkey does not exist, or if it has a different value, FRS is being used.
For any question, please feel free to contact us.
Best regards,
Hannah XiongPlease remember to mark the replies as answers if they help.
If you have feedback for TechNet Subscriber Support, contact tnmff@microsoft.com. -
Hi Hannah,
Thanks for your replay. As I mention my DC with WK which holding all FSMOs roles has domain function level WK 2008 R2
and Registry does show me
Therefore I am sure that what dave says, is not correct, because If I say that I have two DCs with WK 2019 , it means the Sysvoll is DFSR.
Again my question here:
1) can I transfer my FSMOs roles during the work to the WK 2019 DC? and demote the WK 2008 R2?
2) As I mention, I have my certificate authority at the time on the DC with WK 2008 R2, If I want to demote that DC, I have first uninstall certificate authority role.
Can I have at the same time two certificate authority on the two DCs?
3) What happens if I uninstall the certificate authority role first and install it on Dc with DC 2019 during that time with all certificates what I have for our Company?
Regards
-
If you find 48 then using DFSR, if null or 0, 16, 32 then FRS or some state of migration from FRS
I included the step because you did not mention this in your original post. Obviously if it has been done you can skip it and then assuming health is 100% proceed.
I'd use dcdiag / repadmin tools to verify health correcting all errors found before starting. Then stand up the new 2019, patch it fully, license it, join existing domain, add active directory domain services, promote it also making it a GC (recommended), transfer FSMO roles over (optional), transfer pdc emulator role (optional), use dcdiag / repadmin tools to again verify health, when all is good you can decommission / demote old one.
(please don't forget to mark helpful replies as answer)
Regards, Dave Patrick ....
Microsoft Certified Professional
Microsoft MVP [Windows Server] Datacenter Management
Disclaimer: This posting is provided "AS IS" with no warranties or guarantees, and confers no rights. -
Hi Dave,
Thanks again for your help. Yes the DFSR Flag is 48 on the both DCs WK 2008 R2 and WK 2019
Again my Windows 2019 Server is already a DC and I have only to transfer the FSMOs roles from WK 2008 R2 to the WK 2019 server.
What I would like to ask you is the schema master role. As I mention the schema master role is running on the Dc with WK 2008 R2 and has the Version 47 which is correct so. On the DC with WK 2019 is the schema master Version 88, that is correct so too.
If I transfer the schema master from WK 2008 R2 to the WK 2019 server, do I need to run the following command line before I transfer?
Regsvr32.exe C: \ windows \ system32 \ schmmgmt.dll
I dont think so because both version are correct. Am I right?
Thank you
