• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 143
  • Last Modified:

Moved AD From one 2000 server to another new one and apps have stopped working

Basically unplugged the old server and ran DCPROMO on the new one adding all the accounts.

Now one of our server apps that useses SQL does not work and gives access denied errors,  as vauge as this is, does anyone have any ideas?

andy
0
novender
Asked:
novender
1 Solution
 
katacombzCommented:
it might have been a better idea to jion the new server to the existing domain leaving the old server on line for a few weeks letting them replicate the accounts and SID's to the new server. transfer all the fsmo roles to then take the old server off line. if nothing has been done to the old server it might be easier to bring it back up and change the network in this fasion.
0
 
Nirmal SharmaSolution ArchitectCommented:
Replication is a good idea. Simply promoting new server as domain controller doesn't resolve the problem because old server contains user accounts and SIDs supplied by the Domain Naming Master FSMO role. If you simply put new server and promote it domain controller it won't work because it will create all user accounts from the starting SID. Better you replicate the new server with old and then take it out from the production environment.

Advice.
0
 
acasgarCommented:
There are SQL settings that need to be updated once you create the new accounts, I agree with SystmProg.  Depending on how critical the box is I would, DCPROMO the new one remove AD, bring back up the old box, DCPROMO the new box again and join the domain, replicate the names and all of AD.  Make the new server a Global Catalog Server BEFORE you turn off the old box.  Shut down the old box, remove from network, Seize the roles ( http://support.microsoft.com/default.aspx?scid=kb;en-us;255504 ) follow only the role seize part.  Then everything should work in your SQL, of course that assumes you were able to get it all to work again when you rejoined the domain many steps ago.  Otherwise you need to reset some security in SQL and of course check the Services for how it is starting up, pay attention to the logon user!  It may have a new SID now and that could be the issue.

Adam
0

Featured Post

Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now