What is the best way to handle the following situation - possible AD Domain rename

Posted on 2006-06-01
Last Modified: 2010-04-18
Ok, im new to 2003 AD and domains so please bear with me.

I have created a domain and set up 3 AD servers. The domain/forest is business1.local. i only have one computer logging into the domain at this time...will have more in the next week. so i thought i better ask this now.

the person who owns our company also owns several others (business2, business3 etc) and he has our IT staff maintaining the other companies IT now. and now each of his companies are now connected to our network via VPN so we can manage remotely. however, we have determined that we should set them up on an AD structure.

our current AD is setup for our domain (business1.local). i wouldnt think that we would want these other compaines on our own domain and since i have limited knowledge on the subject i dont know how to proceed from here on how to set this thing up for future growth. so currently its like this

-business1 Org. unit
--users Org. unit
--admins Org. unit
--terminals Org. unit

in my mind i see this i how it should be now ( i dont fully understand forests, trees, domains and how they relate--gotta do some more reading)
incorporatedbusiness.local (forest?)
-business1 (domain)
--users (ou)
--admins (ou)
--terminals (ou)

-business2 (domain)
--users (ou)
--admins (ou)
--terminals (ou)

-business3 (domain)
--users (ou)
--admins (ou)
--terminals (ou)

this way i can apply policies to each domain since each busiuness varies from one to the other with different IT needs.

also, we use kerio mail for our email system. kerio will authenticate using AD. so we would want to be able to have email setup for each business that authenticated to their correct domain. Thats just extra info...if needed.

business1 has 80+ users
business2 has 5 users
business3 has 5 users

any help you can give me would be grealty appreciated.
thanks very much.
Question by:ronayers
    LVL 29

    Accepted Solution


    This is a big topic. What you describe seems pretty good. You might want to consider things such as will all domains be in the same forest or speperate. Each domain should contain a minimum of two domain controllers for redundancy and backup. There is a heap of info -

    Author Comment

    <b>You might want to consider things such as will all domains be in the same forest or speperate.</b>

    good question. i dont know what i would gain from that. i'm still not sure where a forest, tree and domain all fit together. i have been reading for the last two hours on it.

    if wanted to redo this and have it like

    incorporatedbusiness.local <-what is this called? forest?
    -business1 (domain)
    -business2 (domain)
    -business3 (domain)

    since i have business1.local already created can i make a new server and call it incorperatedbusiness.local and some how merge the other domain so it appears like the above layout? or am i way off base?

    again, this all new to me and i am clueless. i did set the domain up and it works, replicates and everything. but just not sure how to make sure i can accomodate these other business and allow for growth.

    since i have like 1 pc on the domain should i just wipe the DC's clean and start over? and if i did, i woulnt even know where to start on how to set it up like it should be. gotta do some more reading... :)

    here is a screenshot of what is confusing me with notes.

    can i just rename that forest in the pic to the forest name i want and then just add new domains from there? (business1.local to incorporatedcompany.local) if so, how would that affect the other domains? if at all.

    sorry, lots of questions...
    thanks again!

    LVL 7

    Assisted Solution

    what i understood from you question is "incorporatedbusiness.local" is your Domain Name (DNS) and "business1","business1","business1" are the server names.

    Now regarding your confusion to understand the forest and domain, to make it simple

    your domain name is forest root name with prefix.suffix example

    incorporatedbusiness is prefix
    .local is suffix

    incorporatedbusiness.local is your domain name and also called as forest root name.

    if you have not installed many programs and not configured fully yet then the easy method to setup according to your scenario is

    run dcpromo and demote you AD after completion of demotion then promote it again by running dcpromo

    when it prompts you for FQDN (fully qualified Domain Name) then give the name as incorporatedbusiness.local
    and make sure the server name is business1

    similary when you what to join others like business2, business3 etc join to this domain.

    Post here if you need further clarification


    Featured Post

    Maximize Your Threat Intelligence Reporting

    Reporting is one of the most important and least talked about aspects of a world-class threat intelligence program. Here’s how to do it right.

    Join & Write a Comment

    by Batuhan Cetin Within the dynamic life of an IT administrator, we hold many information in our minds like user names, passwords, IDs, phone numbers, incomes, service tags, bills and the order from our wives to buy milk when coming back to home.…
    Setting up a Microsoft WSUS update system is free relatively speaking if you have hard disk space and processor capacity.   However, WSUS can be a blessing and a curse. For example, there is nothing worse than approving updates and they just have…
    Migrating to Microsoft Office 365 is becoming increasingly popular for organizations both large and small. If you have made the leap to Microsoft’s cloud platform, you know that you will need to create a corporate email signature for your Office 365…
    This video discusses moving either the default database or any database to a new volume.

    729 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    23 Experts available now in Live!

    Get 1:1 Help Now