btmtech
asked on
How to Add a New Server to an Existing Domain
I will be installing a new Windows 2008 Server next week at a clients site. They currently have one Windows Server 2000 box that acts as a primary DC on a simple domain. Here's my question:
Can I add the new server to the domain as a backup DC, remove the primary DC from the picture, and then promote the backup to primary thus introducing the new server to the domain? Is this possible and how much work does it entail?
Can I add the new server to the domain as a backup DC, remove the primary DC from the picture, and then promote the backup to primary thus introducing the new server to the domain? Is this possible and how much work does it entail?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
If you insist on doing this yourself (again, a VERY BAD IDEA in my opinion) I would recommend you follow this procedure:
1. Perform a System State backup on the 2000 DC. (Make sure the machine is running SP4)
2. Run DCDIAG and NETDIAG to verify the health of the domain. Correct any issues that are detected.
3. Join the 2008 system to the domain.
4. Run DCPROMO on the 2008 server and join it as an additional domain controller in the current domain (install DNS when prompted)
5. Transfer the FSMO roles and make the new 2008 DC a global catalog server
6. Run DCDIAG and NETDIAG t o verify the new server and the old server are working properly together
7. OPTIONALLY - Run DCPROMO on the old server and demote it from being a DC. You could leave the server running so that you have two DCs handling authentication and can recover if either fails.
8. IF 7, Once demoted, remove it from the network.
Doing something major like this that you have no experience in is a great way to lose a client and get a lawsuit filed against you.
1. Perform a System State backup on the 2000 DC. (Make sure the machine is running SP4)
2. Run DCDIAG and NETDIAG to verify the health of the domain. Correct any issues that are detected.
3. Join the 2008 system to the domain.
4. Run DCPROMO on the 2008 server and join it as an additional domain controller in the current domain (install DNS when prompted)
5. Transfer the FSMO roles and make the new 2008 DC a global catalog server
6. Run DCDIAG and NETDIAG t o verify the new server and the old server are working properly together
7. OPTIONALLY - Run DCPROMO on the old server and demote it from being a DC. You could leave the server running so that you have two DCs handling authentication and can recover if either fails.
8. IF 7, Once demoted, remove it from the network.
Doing something major like this that you have no experience in is a great way to lose a client and get a lawsuit filed against you.
Forgot about that - 3.5 - Run the necessary ADPREP commands.
lawsuit...damn,
I don't do phones, so suppose this was a phone system someone was installing for me and they hadn't worked with phone systems for 10 years... If they tried to and messed it up and I didn't have a working phone system for a week... I would seriously consider a lawsuit.
ASKER
Thanks for being so positive leew
I'm sure you have the ability to learn how to do this... but how is it wise to experiment on a client?
before demoting the 2000 dc turn it off and check it works .. preferably for a day or so
ASKER
Great suggestion p_nuts.
I'm going with mkline71's plan. I will start Monday and take it slow throughout the week. I will do everything in such a way that I have a fallout plan.
Thanks everyone!!
I'm going with mkline71's plan. I will start Monday and take it slow throughout the week. I will do everything in such a way that I have a fallout plan.
Thanks everyone!!
This question has been classified as abandoned and is being closed as part of the Cleanup Program. See my comment at the end of the question for more details.
Since you are not familiar with this process, I would STRONGLY recommend you do not do this job. Hire/subcontract to someone with experience and learn from them. At the very least, setup a test network and do this yourself SEVERAL times to get a better understanding of what's involved.