exporting active driectory users

Posted on 2007-03-19
Last Modified: 2013-12-05
I have a Windows 2000 Server (PDC) I am planning to re-build (we'll call it serverA).  While I'm rebuilding my main server, I have a backup machine with Windows 2000 server loaded on it (we'll call it serverB).  I'd like to make serverB a temporary PDC, and would like to transefer all login information from serverA to serverB so that it while I'm working on serverA users will be able to work as they normally would.  

Is there a way I can do this?  If so, please list the process step by step.
Question by:npinfotech
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
LVL 71

Accepted Solution

Chris Dent earned 500 total points
ID: 18747050

Hello there,

Add ServerB onto the existing Domain as a Domain Controller. You will need to follow a few steps so it can neatly take over everything. Once you've completed those steps you can run DCPromo on ServerA to demote it cleanly prior to rebuilding it.

First of all, make sure you setup the new server completely. Install the DNS Service (which should be just a case of installing it then waiting a while). During installation you should have ServerB set to use DNS on ServerA (in TCP/IP Configuration), this can be reset after it's all setup.

Do you use DHCP? If you want to transfer that over to the new server you can use this KB Article:

Make ServerB a Global Catalog:

Open AD Sites and Services, expand Sites, then (unless you've changed it) Default-First-Site-Name, then Servers, then ServerB and open the Properties for NTDS Settings. Tick the box for Global Catalog.

Transfer the FSMO Roles:

Make sure you transfer those, rather than Seize.

Make sure you alter any settings in your DHCP scope so any network clients get the right DNS server and such.

As above, when you've done all that feel free to do Start, Run and DCPromo on ServerA and demote it before rebuilding.

Does all that make sense?


Author Comment

ID: 18748975
I think I get it.  I'll give ti a try.
LVL 71

Expert Comment

by:Chris Dent
ID: 18749000

Good luck :) Yell if you bump into any issues.


Author Comment

ID: 18774986
It worked out well.
LVL 71

Expert Comment

by:Chris Dent
ID: 18775166

Great :)


Featured Post

Get 15 Days FREE Full-Featured Trial

Benefit from a mission critical IT monitoring with Monitis Premium or get it FREE for your entry level monitoring needs.
-Over 200,000 users
-More than 300,000 websites monitored
-Used in 197 countries
-Recommended by 98% of users

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article outlines the process to identify and resolve account lockout in an Active Directory environment.
This article shows the method of using the Resultant Set of Policy Tool to locate Group Policy that applies a particular setting.
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …
This video shows how to use Hyena, from SystemTools Software, to bulk import 100 user accounts from an external text file. View in 1080p for best video quality.

717 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question