Migrate a domain from NT to 2000 Active Directory

We currently have a Windows NT 4.0 (SP6) PDC, and a Windows 2000 Server (SP3) as a member of the domain. The WIN2K server is a file server for the domain. I want to end up with the same domain (domain name, accounts, etc.) under Active Directory on the WIN2K box and decommission the NT box.

I've looked at the Active Directory Migration Tool, but it needs to have a new domain to migrate the old domain to. I've looked at the Active Directory Wizard, but it only allows me to setup a new domain or join an existing WIN2K domain.

I assume that I need to do something like the following:

1. Use the Active Directory Wizard to setup a new domain.
2. Use the Active Directory Migration Tool to migrate the settings from the old domain to the new domain.
3. Turn off the old PDC.
4. Rename the new domain to the same name as the old domain.

Questions:

1. Is this the correct procedure, or is there a better way?
2. Is there a document somewhere that spells this out in enough detail that it won't likely get screwed up?
3. Will this (or a better procedure) preserve the shares (and mapped connections to them)?
4. Any (other) issues to watch out for?

Thanks in advance.

--Steve Klein
skleinAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

pcbratCommented:
I have posted a link that yo might want to read beofre yo go ahead. There are many ways to go to AD it juts depends on what you want to do and what you are comfortabel with.


http://support.microsoft.com/default.aspx?scid=kb;en-us;Q298107&sd=tech

This is a white paper on upgrading. If you still have questions keep posting and we will keep in touch.

Dawne :)
0
MSGeekCommented:
The best way to go about this is to build an NT 4 BDC, wait for it to synchronise with the PDC, then take the PDC offline.  Then run an upgrade on the old PDC to Win2k Server and bring it back online running in mixed mode. Once the server is up you can run and has time to synchronise you can run dcpromo on the Win2k Member server and then take the BDC out.
0
MSGeekCommented:
:)
0
Cloud Class® Course: Certified Penetration Testing

This CPTE Certified Penetration Testing Engineer course covers everything you need to know about becoming a Certified Penetration Testing Engineer. Career Path: Professional roles include Ethical Hackers, Security Consultants, System Administrators, and Chief Security Officers.

cmrayerCommented:
I agree with MSGeek, AFAIK this is the only way to keep the same domain name.
0
skleinAuthor Commented:
MSGeek -- are you suggesting that I build a BDC as a potential fallback? It looks like it should be possible to just upgrade the PDC to WIN2K Server, then promote the member server, then take what was the NT PDC offline.

Of course, then there would be no fallback, but I'm probably willing to risk that.

Overall though, I'd rather not touch the NT PDC. Since an upgrade from NT to WIN2K is more effort than the procedure I outlined originally, what exactly won't work with what I was considering?
0
MSGeekCommented:
> " It looks like it should be possible to just upgrade the PDC to WIN2K Server, then promote the member server, then take what was the NT PDC offline."

While you may do this it is not recommend, you have no way to fall back if there is some sort of failure.  

> "Of course, then there would be no fallback, but I'm probably willing to risk that."

Been there and done that, NO you do not want to risk this, follow the recommended best pratices procedure.

> "Overall though, I'd rather not touch the NT PDC. Since an upgrade from NT to WIN2K is more effort than the procedure I outlined originally, what exactly won't work with what I was considering?"

Keeping the same domain name.  

http://www.experts-exchange.com/Operating_Systems/Win2000/Q_20329908.html?query=nt+4+upgrade&searchType=topic
http://www.experts-exchange.com/Operating_Systems/Win2000/Q_20155901.html?query=nt+4+upgrade&searchType=topic
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
pjknibbsCommented:
I agree with MSGeek here--we've just done exactly this (upgraded from an NT4 domain to Win2K), and his method is exactly what we used; we had a spare server which we installed NT 4 on as a BDC (which turned out to be the hardest part of the whole process, in fact!), then we promoted that machine to PDC before upgrading to Windows 2000 Server. The whole process worked flawlessly, and nobody on the network noticed the slightest difference after the upgrade--which I think is the crucial issue here; if you have any reasonable number of users then it's worth a little extra server-side effort to make sure you don't have to get everyone to change their logons or similar.
0
pjknibbsCommented:
Oh, one other thing: when using Active Directory you must make sure that all the workstations are using one of your AD domain controllers as their DNS source, because otherwise the whole thing won't work. If you setup your workstations using DHCP this is a pretty easy thing to do.
0
skleinAuthor Commented:
MSGeek -- looks like I need to go with your recommended procedure. Thanks.

--Steve Klein
0
MSGeekCommented:
Steve.. Thanks.  FYI, you don't need (have) to go with the recommended procedure, but as pjknibbs stated "it's worth a little extra server-side effort."  Good luck with your migration.  MSGeek.
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Windows 2000

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.