Solved

GC Transfer before FISMO?

Posted on 2006-11-07
6
433 Views
Last Modified: 2007-12-19
So I setup a new 2003 server, ran adprep and all the microsoft stuff to prepare and setup my 2000 domain to 2003. Done. Setup as a DC, AD is replicated. Setup Exchange 2003, migrated mailboxes and everthing. All user are now using the new exchange server.

I am now ready to decommision the old 2000 server. I know the old server is the GC an I am pretty sure it hold all FSMO roles. I want to make sure I transfer all needed and in the right order from this point foward so I can take down the old 2000 server. I have already setup DNS on 2003 and it appears all DNS replicated because 2003 DNS shows everything the 2000 DNS did with the exception of the SOA being the 2003.

I want to know the order and process I have left.
I need to know if my users will be effected so I can kick them off when needed. I also have set the IP on 2003 of the new server and I did not plan on changing it back to match the old 2000 server.

We have 45 active local users and a few remote guys that are not in much. I do plan to take the old 2000 server after the decommision and reload it with 2003. Then using it as a 2nd DC and as our APPserver.
I hope to get this done today so I can reload the server tommorow and configre our APP tommorow night, as there is the software tech comming tommorow night to preform the APP migration. Thank for your help.
0
Comment
Question by:Natetech
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
6 Comments
 
LVL 38

Accepted Solution

by:
Shift-3 earned 250 total points
ID: 17891537
To make the new server a Global Catalog server, run AD Sites and Services, expand the Sites container, your site name, Servers, and your new server name in the left pane.  Right-click NTDS Settings, hit Properties, check the Global Catalog box, and hit Ok.

Transfer all the FSMO roles using this procedure:
http://support.microsoft.com/kb/324801

Wait for all AD changes to replicate.

Make sure all the clients are pointing to the new server's IP for DNS (and WINS if it is being used).  This change can be deployed via DHCP or a vbscript.  You may also have to remap their network drives and printers.  This can be done with a logon script.

Shut down the old server and have users test things out.  The more time you can devote to this part the better, but it sounds like you're in a hurry.  At a minimum verify that people can log in, access their programs and data, print, and access the Internet (if allowed).

If I'm understanding correctly you plan on formatting the old server and reloading it from scratch.  If that's the case, first run DCPROMO and demote it from domain controller to member server.  Do NOT choose the "last domain controller in the domain" option.  Wait for this change to replicate to the new server before disjoining the old one from the domain and taking it off the network.
0
 

Author Comment

by:Natetech
ID: 17891993
GREAT feedback, thankx.

Ok I didnt set WINS, I dont think we need it, is there any real good way to find out if my domain needs it?

Wow the GC part is easy. Should I clear the GC selection on the old server also? at the same time as enabling on the new?

The FSMO transfer doesnt seam to hard either. Should I be concerend any active users will be effected by the GC and FSMO transfer?

How can I verify the AD changes have successfully replicated?

So most of the users have static IP, can you recommend a good vbscript to do this through-out my network? I know what vb is but I do not know how to use it.






0
 

Author Comment

by:Natetech
ID: 17892284
Ok well I have enabled the GC, still not sure if I should at this point uncheck GC from the old server....??

I performed all the FSMO Transfer and everything seams great. Didn't think it was going to be so wasy, wow.
I found an MS artical that showed how I can check GC replication, I have verified that it completed.

I tested 1 client, changed DNS IP to new server, restarted, and appears to be working correctly.

Now I think I just need that vbscript to change all clients so I dont gotta goto each one.

Let me know if you can help me there, thank.

0
Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 
LVL 38

Expert Comment

by:Shift-3
ID: 17892540
No, you don't need to remove Global Catalog from the old server.  DCPROMO will take care of that when you demote it.

I have included a sample script below.  Customize the arrays between the dashed lines and paste it all into a text file with a .vbs extension.  Running it will reset the DNS servers on the target computers.


On Error Resume Next

'This script changes the DNS server search order on target computers.
'For more information on the coding see:
'http://www.microsoft.com/technet/scriptcenter/resources/qanda/apr05/hey0425.mspx

Dim arrComputers, strComputer, objWMIService, colNetCards, objNetCard

'----------
'Add all target computer names to this array.  Note that they must be in all-caps.
arrComputers = Array("COMPUTER1","COMPUTER2","COMPUTER3", "COMPUTER4",_
      "COMPUTER5","COMPUTER6")

'Replace 10.0.0.1 and 10.0.0.2 in the following line with the IPs of the DNS servers.
arrDNSServers = Array("10.0.0.1", "10.0.0.2")      

'----------
For each strComputer In ArrComputers

   Set objWMIService = GetObject("winmgmts:" _
       & "{impersonationLevel=impersonate}!\\" & strComputer & "\root\cimv2")

   Set colNetCards = objWMIService.ExecQuery _
       ("Select * From Win32_NetworkAdapterConfiguration Where IPEnabled = True")

   For Each objNetCard in colNetCards
       objNetCard.SetDNSServerSearchOrder(arrDNSServers)
   Next
Next
0
 
LVL 1

Expert Comment

by:aniesm
ID: 17892794
You can seize the FSMO role in the server you want to remove from the network or transfer the FSMO roles to different machine and demote the 2000 server DC from the network.
0
 

Author Comment

by:Natetech
ID: 17893090
Script works great. All advice was great. Thankx.
0

Featured Post

Secure Your WordPress Site: 5 Essential Approaches

WordPress is the web's most popular CMS, but its dominance also makes it a target for attackers. Our eBook will show you how to:

Prevent costly exploits of core and plugin vulnerabilities
Repel automated attacks
Lock down your dashboard, secure your code, and protect your users

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Hello I read in a discussion about a person who configured a very simple mirror RAID with two hard drives; the system and data were on the same partition. He asked how to repair the system as it was not booting up anymore. In his case running …
Many people tend to confuse the function of a virus with the one of adware, this misunderstanding of the basic of what each software is and how it operates causes users and organizations to take the wrong security measures that would protect them ag…
This is used to tweak the memory usage for your computer, it is used for servers more so than workstations but just be careful editing registry settings as it may cause irreversible results. I hold no responsibility for anything you do to the regist…
Hi friends,  in this video  I'll show you how new windows 10 user can learn the using of windows 10. Thank you.

691 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question