Adding a Windows 2003 server to a Windows 2000 domain as Domain Controller

Posted on 2006-05-22
Last Modified: 2010-04-13
So We want to add a Windows 2003 server to our current 2000 Domain as a Domain controller. Are there any suggestions for articles to read? I'm unsure if I should be running adprep or if I should just pull the trigger and run dcpromo on the 2003 server. Any articles and help would be appreciated!

Question by:sysops
    LVL 48

    Accepted Solution

    Hi sysops,

    can be done quite easily with a clean install of the new server

    **Note - If introducing a 2003 R2 Server into the network as a DC you will need to run the ADPREP tools from the second cd


    you can also download here

    this boosts the schema up to cope with R2 functionality

    1) Promote your new machine as an additional domain controller in an already existing domain - this will allow AD to replicate to the new server
    2) Make sure DNS is AD integrated on your old DC to allow all DNS replications also
    4) Make the new DC a Global Catalog under Sites and Services
    6) Run DCDIAG to make sure all is well and replication is fine

    LVL 20

    Assisted Solution

    I don't think Jay Jay (Hi Jay Jay) covered this so just in case - a couple of practicalities:
    In W2K the schema may need to have write access enabled to allow adprep to run. This needs to be run on the schema master but if you only have one dc then that'll be the one to run it on.
    Schema Updates Require Write Access to Schema in Active Directory
    Also if you're running exchange 2000 server you need to run the following prior to adprep
    Windows Server 2003 adprep /forestprep Command Causes Mangled Attributes in Windows 2000 Forests That Contain Exchange 2000 Servers
    I've done what you're doing a couple of times now - no problems. You don't say if the second DC is staying at the same site or moving to another ?
    Deb :))

    Author Comment

    Should i install AD2k3 and the DNS/Wins on the 2003 box before I do the dcpromo?
    LVL 48

    Expert Comment

    it doesnt matter if you do it before or after for dns

    AD is installed as part of dcpromo - thats what it does

    Featured Post

    Why You Should Analyze Threat Actor TTPs

    After years of analyzing threat actor behavior, it’s become clear that at any given time there are specific tactics, techniques, and procedures (TTPs) that are particularly prevalent. By analyzing and understanding these TTPs, you can dramatically enhance your security program.

    Join & Write a Comment

    Suggested Solutions

    NTFS file system has been developed by Microsoft that is widely used by Windows NT operating system and its advanced versions. It is the mostly used over FAT file system as it provides superior features like reliability, security, storage, efficienc…
    ADCs have gained traction within the last decade, largely due to increased demand for legacy load balancing appliances to handle more advanced application delivery requirements and improve application performance.
    In this sixth video of the Xpdf series, we discuss and demonstrate the PDFtoPNG utility, which converts a multi-page PDF file to separate color, grayscale, or monochrome PNG files, creating one PNG file for each page in the PDF. It does this via a c…
    In this seventh video of the Xpdf series, we discuss and demonstrate the PDFfonts utility, which lists all the fonts used in a PDF file. It does this via a command line interface, making it suitable for use in programs, scripts, batch files — any pl…

    732 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    18 Experts available now in Live!

    Get 1:1 Help Now