New Server in an existing Domain

I have recently moved our Accounts System from the Domain Controller to its own dedicated server running Windows 2003 server.

We already have a domain controller and a Terminal Server running SBS 2003

My problem is that the new server is not part of the domain (it shows that it is a member of Workgroup in My Computer), although I can access it by mapping a drive to its UNC address, also, I can run the accounts package from the desktop pc's, but it is very slow, which I am assuming is becasue the new server is not part of the domain.

Should I run DCPROMO and make the new server another DC in the existing domain, I only want it to be a file server and do not want DHCP, DNS or any other DC functions on this new server.

Steveh24
Steveh24Asked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

pseudocyberCommented:
Go into Server Manager and have the server join the Domain.
0
Jay_Jay70Commented:
Hi Steveh24,

if you dont want it as a domain controller then dont run dcpromo...however it is advisable to have a another DC in the network for redundancy... so in saying that i would say yes, promote it in

be careful of SBS limitations
http://support.microsoft.com/?kbid=295765
same applies for 03

Cheers!
0
Steveh24Author Commented:

if I run DCPROMO it will create a duplicate AD and start to replicate the main DC, which is no bad thing I guess.

The new server is a Server in its own right and is running in the Administrator profile, so If I just wanted to join the new server to the domain there would already be a user called Administrator in the existing domain and it would not let it join.

Help !!

Steveh24



0
What were the top attacks of Q1 2018?

The Threat Lab team analyzes data from WatchGuard’s Firebox Feed, internal and partner threat intelligence, and a research honeynet, to provide insightful analysis about the top threats on the Internet. Check out our Q1 2018 report for smart, practical security advice today!

NightofthecowCommented:
Just make sure the passwords on the admin account are the same on both domain controllers. It shouldn't give you much hassle. The domain controller function shouldn't put much strain on the server once it's running.

I've done it before at home to test it and it worked like a champ.
0
Jay_Jay70Commented:
why would it not let it join?  at the moment you are running under the local admin   you need to join with the domain admin

nothing wrong with having two DC's   your call i guess
0
Steveh24Author Commented:
I have opted to run DCPROMO, however it has failed saying that the current forest is not suitable for 2003 Server and I should run Adprep.

I have noticed that the new server is no longer part of a workgroup and is now part of the domain.

What is Adprep and what do I need to do now.

Steveh24

0
Jay_Jay70Commented:
0
pseudocyberCommented:
>>I have noticed that the new server is no longer part of a workgroup and is now part of the domain.

Wasn't that the goal?
0
Steveh24Author Commented:
Although the new Windows 2003 server has joined the domain, I am unable to run any applications from my desktop on this server, which must be down to security rights.

Can someone explain to me in very simple steps how I use the Adprep tool to allow the new 2003 server to join the domain as a DC, so that I don't get the error I had in my previous post, which server d I run Adprep from ??

Do I have to demote the 2003 server that failed to join correctly.

This is all new to me, so please be specific.

Steveh24
0
Jay_Jay70Commented:
the link i sent guides you step by step, just follow it its easy as

basically from the 2000 machine, you put the 2003 disc in and from the command prompt navigate to the i386 directory on the cd

run the command   adprep /forestprep    when thats done run adprep /domainprep

there you go done and done

simply run dcpromo on your 2003 machine and you away - you havent promoted it so you cant demote it
0
Steveh24Author Commented:
Jay

Thanks for that

I don't have a 2000 machine, I have a 2003 SBS, so do you mean to put the CD in this machine

Steveh24
0
Jay_Jay70Commented:
ahhh i take it you are trying to add a 2003 R2 server yes?

comes in a two cd set?
0
Steveh24Author Commented:
Spot on Jay.

I presume that your previous instructions are still correct though.

Steveh24
0
Jay_Jay70Commented:
difference with R2 is that you have to run the adprep utility from the second disk supplied :)
0
Steveh24Author Commented:
Ok, I have that.

Do I run Adprep using this CD on the SBS 2003 server
0
Jay_Jay70Commented:
yes :) forestprep and domainprep
0
Steveh24Author Commented:
Jay

Not getting very far with this.

With Disk 2 in my SBS 2003 CDROM Drive, I ran Adprep /forestprep and got the following error message.

"Adprep was unable to extent to the schema"

"The schema master did not complete a replication cycle after the last reboot"

Why would the SBS 2003 server being the only DC in the forest want to do a replication cycle when there is nothing for it to replicate to.

Help !!!

Steveh24

0
Steveh24Author Commented:

Forgot to say that the FRS is running on the DC
0
Jay_Jay70Commented:
hmm something odd there

does dcdiag still pass?
0
Steveh24Author Commented:

I don't have dcdiag, so I will have downloaded the version for wk3 sp1, but we have SP2 installed on our SBS 2003 server, so not sure if this will work.
0
Steveh24Author Commented:
I have installed the support tools on the CD and run dcdiag and it passes all the tests except the very first one, where it fails trying to replicate to the Windows 2003 server that I tried to run DCPROMO and although this server didnt not successfully join the domain, the SBS 2003 DC still thinks that this server is a DC, so I have simply deleted it from the list of DC's.

I will reboot the SBS 2003 DC as soon as I am able and then try to run dcdiag again.

0
Steveh24Author Commented:
Rebooted Server and ran DCDIAG, but still get same error that it failed trying to do a file replication to the 2003 Server, which doesn't even exist withing the SBS 2003 DC.

What next ????????????


0
Jay_Jay70Commented:
check under sites and services and make sure that there is no ref to the other server in there

you may need to remove it with the ntdsutil also
http://www.petri.co.il/delete_failed_dcs_from_ad.htm
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Steveh24Author Commented:
Hi Jay

Thanks for sticking with me on this one and I have now successfully joined the Windows 2003 Server to the SBS 2003 Domain.

I can't believe this has been so difficult to do.

I have increased the points to 250 and you assistance is worth every one of them.

Many thanks
0
Jay_Jay70Commented:
congrats man,

thankyou for the points

all the best
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Email Protocols

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.