• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 340
  • Last Modified:

Using REPLMON to restore Active Directory

I have two Windows Server 2003 domain controllers in my domain. I need to replace the hard drives in the Primary Domain Controller. If I install Windows on the new drive, add the Domain Controller server role, restart in Directory Services Mode, and run REPLMON to replicate Active Directory from the second DC, is that the best way to restore Active Directory to the new installation? Am I missing anything?
0
achalmers2004
Asked:
achalmers2004
  • 2
1 Solution
 
aces4allCommented:
Before you begin you should make sure you have good backups then do do the following

If the DC you need to replace HDDs on is still up you should transfer the FSMO roles first and demote the machine from a DC.  For info on how to transfer the FSMO roles see:  

http://www.petri.co.il/transferring_fsmo_roles.htm

If that DC is no longer online you'll need to seize the FSMO roles and perfrom a Metadata cleanup to remove the old DC.  See the following:

Seizing FSMO roles
http://www.petri.co.il/seizing_fsmo_roles.htm

Metadata Cleanup
http://www.petri.co.il/delete_failed_dcs_from_ad.htm

After transfering/siezing the FSMO roles and removing the old DC from AD reinstall Server 2003 on the new/repaired and promote it to a DC.  There is no need to run REPLMON.
0
 
achalmers2004Author Commented:
If I'm reading this correctly, I won't be able to transfer FSMO roles because the original DC and the new DC at this location won't be online at the same time. Just to clarify, the second DC which is in another city will remain online throughout the process.

So if I'm looking at seizing FSMO roles, I guess I don't understand what I'm seizing from, if the original DC is already offline.
0
 
aces4allCommented:
You are correct the FSMO roles will need to be siezed and a metadata cleanup will need to be performed to remove the offline DC form AD.  While most things in Active Directory are replicated and redundant there are certain types of tasks that a single DC has final authority on.  These are called Flexible Single Master Operations (FSMO).  For an explaination of the FSMO roles see http://www.petri.co.il/understanding_fsmo_roles_in_ad.htm.  While the original server may be offline Active Directory still says that server owns those roles.  For a domain to function well DCs holding these roles must be present and available.

Seizing FSMO roles
http://www.petri.co.il/seizing_fsmo_roles.htm

Metadata Cleanup
http://www.petri.co.il/delete_failed_dcs_from_ad.htm

0
 
Computer101Commented:
Forced accept.

Computer101
EE Admin
0

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now