• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 264
  • Last Modified:

Need to remove un-necesary lower level AD Child Domain as part of new server install/migration.

We have a W2003 AD Domain "city.local" and a child domain of "library.city.local"
The Domain controller for "Library.city.local" is a W2000 AD system - that is being replaced with a W2003R2 system.
The parent Domain is W2003.
It has been decided that the child domain is not required.
We want to find the best method to eliminate the child domain - to minimize the effect on several PC systems
and a Terminal Server that uses a GPO lockdown. A new terminal server will also be introduced.
Wish to transfer as many objects (Computer accounts, users, policies) as possible trying to minimize effort.
There are several PC's that use a hardware lockdown system and GPO lockdowns.
We can do it the hard way - move PC's to workgroup, export AD accounts,etc but looking for time saving steps.
0
BobPrinceExpert
Asked:
BobPrinceExpert
1 Solution
 
martin_babarikCommented:
Hi, I'd say this article is the info you are looking for:
http://support.microsoft.com/kb/326480/en
Let me know if there is something you want to be explained further.
Regards

Martin
0
 
ManicDCommented:
you may also want to lookup information about "movetree" to move AD objects between domains.

This seems like a several step process, first upgrade to 2003, second move the objects across, demote Domain controllers for the child domain, then promote them to the parent domain(if required)
0
 
BobPrinceExpertAuthor Commented:
We will look in to "movetree" as that sounds like it fit's in to what we plan to do.
Basically since we are installing new servers - we will set them up in the parent domain.
THen sounds like we can use "movetree" to move over objects that we still need.
In some cases - we have some generic users - so probably recreate them - but move over GPO's,etc.
Thanks for the tip.
Bob
0

Featured Post

Upgrade your Question Security!

Add Premium security features to your question to ensure its privacy or anonymity. Learn more about your ability to control Question Security today.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now