[Last Call] Learn how to a build a cloud-first strategyRegister Now

x
?
Solved

Windows 2003 - Promote and Demote

Posted on 2006-05-04
5
Medium Priority
?
1,970 Views
Last Modified: 2008-11-24
Hello,

My domain controller is about ready to die so I setup a new Windows 2003 server. How do make sure the new server has all of the Active Directory accounts before I demote the failing domain controller? What is the easiest and safest way to make the new server the domain controller so that I can work on the other server?

Thanks,
John
0
Comment
Question by:jhieb
  • 3
  • 2
5 Comments
 
LVL 48

Accepted Solution

by:
Jay_Jay70 earned 2000 total points
ID: 16610701
Hi jhieb,

can be done quite easily with a clean install of the new server

**Note - If introducing a 2003 R2 Server into the network as a DC you will need to run the ADPREP tools from the second cd

\CMPNENTS\R2\ADPREP

you can also download here
http://www.microsoft.com/downloads/details.aspx?familyid=5B73CF03-84DD-480F-98F9-526EC09E9BA8&displaylang=en

this boosts the schema up to cope with R2 functionality


1) Promote your new machine as an additional domain controller in an already existing domain - this will allow AD to replicate to the new server
2) Make sure DNS is AD integrated on your old DC to allow all DNS replications also
3) Transfer the FSMO roles to the new server
http://www.petri.co.il/transferring_fsmo_roles.htm
http://support.microsoft.com/default.aspx?scid=kb;en-us;255690
4) Make the new DC a Global Catalog under Sites and Services
5) Deactivate DHCP on the old DC (if used) and recreate the scope on the new DC
6) Run DCDIAG to make sure all is well and replication is fine
7) Demote the old DC if you dont intend to keep it as a backup
8) Recreate Shares etc on the new server
9) Reinstall printers and share them etc....
10)Take over any DHCP roles etc that the old DC held

this will allow you to have the complete AD directory on the new DC and clients will barely be aware of any changes
0
 
LVL 1

Author Comment

by:jhieb
ID: 16617088

Thanks. I've tried something similar to this once before and I ran dcpromo. When I did that my new server kept giving me errors. I can't remember what those errors were.

Please elaborate on Step#1: How should I promote the new workstation to be an additional controller? Can I do this in the wizard?

Yes, DNS and DHCP is on the old server.

Please elaborate on Step#3:  What is and how do I transfer teh FSMO roles to the new server? Do I need to do this?

Please elaborate on Step#4: How do I do this and is this necessary?

Is there anything I need to be cautious of? I don't mind if I have to redo the new server but I don't want to take down or screw up the old server until the new one is working properly.

Thanks,
John
0
 
LVL 48

Expert Comment

by:Jay_Jay70
ID: 16619782
1) Step 1 is simply running dcpromo and adding and adittional Domain controller

2) Step 3, FSMO roles are crucial to domain functions, the answer is yes, especially if your domain controller is dying, dont wait until it dies!

3) Step 4 is once again a yes, you open up AD sites and services under admin tools, scroll down till you find your new DC, expand down to the NTDS setting, right click, properties, tick the GC box

as long as you follow the links above with FSMO roles, then you should be fine, i have done this who knows how many times using that exact procedure
0
 
LVL 1

Author Comment

by:jhieb
ID: 16621844
Thanks your all your help!
0
 
LVL 48

Expert Comment

by:Jay_Jay70
ID: 16623357
no problem

all the best
0

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A brief overview to explain gateways, default gateways and static routes OR NO - you CANNOT have two default gateways on the same server, PC or other Windows-based network device. In simple terms a gateway is formed when a computer such as a serv…
A common practice in small networks is making file sharing easy which works extremely well when intra-network security is not an issue. In essence, everyone, that is "Everyone", is given access to all of the shared files - often the entire C: drive …
Michael from AdRem Software explains how to view the most utilized and worst performing nodes in your network, by accessing the Top Charts view in NetCrunch network monitor (https://www.adremsoft.com/). Top Charts is a view in which you can set seve…
With just a little bit of  SQL and VBA, many doors open to cool things like synchronize a list box to display data relevant to other information on a form.  If you have never written code or looked at an SQL statement before, no problem! ...  give i…

829 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question