Hi guys,
I'm attempting to promote a backup domain controller to primary and have run into a bit of a snag. I thought everything went well but I can't seem to use the new domain controller to log onto the domain in question. A couple of notes first to explain where I am at:
1) I seem to have set things up on this server correctly while it was a BDC. All AD info, login scripts and DNS stuff propagated correctly to the system and I've already moved the DHCP scopes over with no issue.
2) This involved one domain only.
3) I have gone ahead and already transfered the FSMO roles to the new PDC according to MS's document on the procedure and all reported success.
4) After port scanning both systems, there appears to be a discrepancy in services offered. Outside of additional services on the old server like IIS (for WSUS), I seem to be missing open ports 3268 and 3269 on the new server which appear to be attributed to LDAP.
5) I've been pretty good with administering AD in Win 2003 but this is my first promotion attempt.
6) All, changes done were on the new PDC. I haven't done anything specifically on the old PDC. I am currently under the impression that the old PDC would demote itself automatically when the new one was promoted? MS's document didn't mention if anything had to be done on the old PDC.
After the setup was complete, I tried shutting down the old PDC and logging in using the new PDC without luck. I just couldn't log on and systems already logged in lost the ability to browse the network without being prompted for a login / password.
Any idea what step(s) I might have missed?
Thanks guys.
Start Free Trial
