Solved

Problems after renaming domain controllers and member servers (2003/2000).

Posted on 2007-04-02
5
331 Views
Last Modified: 2012-05-05
I'm inheriting a 2003 Windows Network configured as follows:

1-2003 Small Business Server (domain controller and Exchange server, all FSMO roles)
1-2003 Server acting as a redundant domain controller
2-2000 Member Servers for additional services (DHCP, File Server, etc.)

Here are some recent changes that I am aware of...

I know that 2 new servers were added to this environment (the 2003 servers). Both of the 2000 boxes were demoted from domain controllers making the 2003 servers the only domain controllers. Everything is running at 2000 functional level. After the upgrades were completed, the machines (including domain controllers) were renamed. I know this is a new feature in 2003...All documentation I see says that the forest must be operating at 2003 functional level in order to change DC names, however I verified that the forest is running at 2000 level (not sure if this is a factor or not).

And now the problem...

Ever since these events took place, the backup server (2000 server running Backup Exec 10D) is unable to successfully authenticate with the 2003 small business server only in order to collect data via a remote agent.  After digging through the 2003 SBS, I see that  the old 2000 servers are still listed by their old names in Active Directory Sites and Services. Both of the 2003 servers are listed correctly. In Active Directory Users and Computers both 2003 servers are listed correctly as domain controllers. I am looking through event viewer and everything looks clean, no NTFRS, DNS, or Directory service errors..

How do I attack this problem? I am looking over Microsoft Article ID 316826. Is this what I need to do to resolve? I am unable to communicate with the person who performed the upgrades, etc. so I'm not sure what procedure was followed for renaming the domain controllers, etc. Hopefully someone with some experience renaming 2003 domain controllers and/or 2000 servers can point me in the right direction.
0
Comment
Question by:FIFBA
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
5 Comments
 

Author Comment

by:FIFBA
ID: 18839599
I just dug a little deeper through the logs on the second 2003 DC (not SBS). I see event 53258 MSDTC could not correctly process a promotion/demotion event...It stopped about a week ago. I also see event 4193 MSDTC that seems to imply that the event is being supressed (filtering duplicate events=1).
0
 
LVL 30

Accepted Solution

by:
LauraEHunterMVP earned 400 total points
ID: 18839651
How many users/groups are configured on this domain? How big is the Exchange store?

I ask this because renames on SBS (or anytime Exchange is in the mix) are an -ugly!!!!!- proposition.  Combine this with the fact that you're seeing many errors to begin with and you're walking into a situation in which you don't know where all of the bodies are buried, a question worth asking is: is it worth the trouble to tear your hair out fixing the existing environment, or would it be worth your sanity to blow out SBS, re-configure the domain and start fresh?  

It might be the difference between one LOOOONG weekend re-installing things versus months and months of chasing down niggling errors and things just not working quite right.

In a "big server" enterprise AD deployment I would almost never suggest this approach, but if we're only talking about 10 users on an SBS box and a few GB in the Exchange store, it might end up being the better option.

Hope this helps.

Laura E. Hunter - Microsoft MVP: Windows Server - Networking
0
 

Author Comment

by:FIFBA
ID: 18839929
I think there are around 40 users.
0
 
LVL 15

Assisted Solution

by:MarkMichael
MarkMichael earned 100 total points
ID: 18841960
Sounds like it may be a SID issue. It may be worth clearing out any of the old/nonexistant names manually from DNS/ADSIedit? I doubt raising the functional level after the event is going to help you either.
0
 
LVL 30

Expert Comment

by:LauraEHunterMVP
ID: 18842221
Even with 40 users I might be tempted to just blow the whole thing out and start over.  I would much rather look at a domain and say "Yes, I'm confident that this is configured correctly because -I- did it", rather than "Good grief, what -else- did Skippy my Genius Predecessor do wrong that I haven't found out about yet?"
0

Featured Post

Free NetCrunch network monitor licenses!

Only on Experts-Exchange: Sign-up for a free-trial and we'll send you your permanent license!

Here is what you get: 30 Nodes | Unlimited Sensors | No Time Restrictions | Absolutely FREE!

Act now. This offer ends July 14, 2017.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The SBS 2011 release date (RTM) is supposed to be around Christmas, 2011.  This article is a compilation of my notes -- things I have learned first hand.  The items are in a rather random order, but I think this list covers most of what is new and d…
Setting up a Microsoft WSUS update system is free relatively speaking if you have hard disk space and processor capacity.   However, WSUS can be a blessing and a curse. For example, there is nothing worse than approving updates and they just have…
In this video, viewers are given an introduction to using the Windows 10 Snipping Tool, how to quickly locate it when it's needed and also how make it always available with a single click of a mouse button, by pinning it to the Desktop Task Bar. Int…
NetCrunch network monitor is a highly extensive platform for network monitoring and alert generation. In this video you'll see a live demo of NetCrunch with most notable features explained in a walk-through manner. You'll also get to know the philos…

719 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question