I have a domain with 1 DC called "Servant" which runs Windows 2000 Advanced Server SP4
I would like to add a second DC running Windows 2003 Standard Edition which I want to promote as a DC and eventually take over all roles from SERVANT.
When I have tried to do this before there were replication issues caused by Access Denied errors on SERVANT. The two DCs in the domain couldn't replicate properly and the new server couldn't be demoted gracefully. After a forced demotion via dcpromo I cleaned up the metadata with ntdsutils and ADSIEdit.
I suspect that the root of the problem was that my DNS or system permissions on SERVANT wasn't very healthy to start off with. How can I check / ensure that everything is healthy on SERVANT so that I can avoid the problems I encountered? I also have the option to build a new domain and join all 10 client PCs to the new server, but the transition will be much more disruptive.
Thanks for any help.