Windows 2008 Server Migration From Server 2003

Thanks dariusq, these are some realy good links here. I am scheduled to start this tommorrow and will keep you informed how it goes.

It's good to see my articles are getting used around the site :)

I'm going to post in the other question with regards to sorting out the Exchange migration.

-tigermatt

Thanks also Tigermatt may have to award you something out of this. Not ready to do the Exchange migration until this is complete and stable.

Sorry for taking so long to get back. I've spent the last day and a half getting aquainted with this new clients setup and starting the new server install and migration. I first extended the 2003 DC server's existing active directory schema as directed without any difficulty, did not feel it necessary to do the read only DC extension though, correct me if I'm wrong. I assigned an IP in the range needed and joined the new 2008 server to the domain as a member.

I then excecuted dcpromo at the new 2008 server. There was already a checkmark for DNS and Catalogue services and to to run with this but was getting some error messages about DNS problem. So I unchecked DNS, figuring I could do it later and continued. After rebooting, the new 2008 server administrator password had changed what the old 2003 admistrator password was and I figured it must have syncronized the user accounts at this point.

I then created and E drive on the new server (Just a note Server 2008 let me resize cdrive down to make room for the new Edrive) I did this to emulate the same setup on the old 2003 server as they were also using it as a file server. I then added the DNS services on the new 2008 server. And then used ROBOCOPY /copyall /E /B to copy the data from 2003 to the 2008. Strangely I hit someones /profile and it had access denied. (not sure why because everyone's computer was shutdown while they went out for beers)

I then went to transfer the FSMO Roles and had an error on the very first one. ( Active Directory The parameter is incorrect. The transfer of the current Operations Master could not be performed.) and I stopped here. Any help would be appreciated at this point.

I also would like to know once I've transfered all the FSMO's can I just turn off the 2003 server before I demote it from being a domain controller Just incase I need to reverse this.

I then want rename the Server 2008 to the old server name so the shares at the workstations don't have to be adjusted. What about the Server 2000 with Exchange 2003 will it also need to see old server name after its turned off? Also after looking at the data files that came over to the new server it doesn't look like they are shared out. Wasn't this suppose to copy over with ROBOCOPY?

What server are you on when you are trying to Transfer the FSMO roles? Other thing is I wouldn't recommend changing the name of the server since AD and other services rely heavily on naming. You could have some major issues changing the computer name once AD is installed on the server but you can do it. Are you getting any errors in the Event Log? I haven't worked with Exchange in a while so I can't tell you for sure on the question you asked about Exchange but I know TigerMatt can answer that question. Lets get the FSMO roles over then we will talk about shutting down the other server for testing purposes.

You will still have to share the drive folders but robocoy keeps all permissions.

How is replication going?

I was able to transfer the following roles
Domain Naming Master
PDC
RID Pool Master
Infastructure Master
(I did get a warning message though for the Infrastucter master that it shouldn't be located on a GC Global Catalogue Server)
I am not able to do the Schema Master
When I click Change Domain I get this message

The following active directory error occured
The Domain Controller could not be set
The parameter is incorrect
And when I try to change the Operations Master, the correct Domain name is in the Change to box but I receive the same message when I try to execute the change.

The replication seems to have taken place. Is there any utilities or ways I can verify this is the case other than looking at the users and seeing Serv2008 in the list of domain controllers?

Also the DHCP still has to be created in Serv2008. Server2 is still doing this function. Could this be a factor? And what is the best process to switch DHCP over?

Another issue I just noticed is that I can't Remote Desktop into the Serv2008 I get the user name or password is incorrect.

Schema Admins members are
Administrator   domain.com/users
exchbk  domain.com/services accounts
I'm logged in as Administrator on server2

If you open the Active Directory Schema console as if you were going to transfer the role, what server is listed as the present holder of it? Is it one of the old DCs or is something else listed as the present holder?

When I open the Active Directory Schema console as if I were going to transfer the role, the server  listed as the present holder is blank. And when I enter in Serv2008 or even Server2, I still get the same message.

Aha... that's what's causing the problem then. It would appear that the Schema Master role isn't being held by either server for some reason, and as a result, you can't gracefully transfer it.

Can you just check that you get the same results on ALL of your servers which are Domain Controllers, just to be sure it's not an issue with a single server. If all the servers (Serv2008, Server1 and Server2) list it as blank, then you'll have to seize the role onto Serv2008.

http://www.petri.co.il/seizing_fsmo_roles.htm

-tigermatt

when I run the netdom query /domain fsmo on the Serv2008 it now shows
Schema master                             Server2.domain.com
Domain naming master                  Serv2008.domain.com
PDC                                               Serv2008.domain.com
RID Pool manager                          Serv2008.domain.com
Infrastructure master                    Serv2008.domain.com

When I check the Server1 (which is a Server 2000 with exchange 2003) it shows a blank.

If I run a seize for the Schema master to Serv2008 does this mean that its a possibility the Server2 will not be able to join the domain again?

When you click connect to Serv2008 it gives that same perameter is incorrect message but when you click OK passed it and try to do the Operations Master and change to Serv2003 ( in the field it shows Serv2008. When you click change it then gives the parameter is incorrect message again.

I'm also done moving all the data and shares. I have 2 shares that wouldn't come over with ROBOCOPY giving an access denied message. I was able to just copy one by adding Administrator to the security. But the other one just doesn't work. I think I'm just going to wait until this user gets in on Monday and copy from his desktop over to the new server.
There is one database program I'll have to contact the vender to see how it maps to the old server. After this I think we're done. And I will remap the backup on Monday as well. After this do you think it would fine to seize the last FSMO and demote the server2? What about the Exchange server does it need the old Server2 for anything?

One more thing I forgot to mention. Roaming profiles were being used on the Server2. How can I ensure this server is now transfered to the new Serv2008?

You can go to the user's properties and check the profile path to make sure the profile path is pointing to the correct server. Have you copied over the profiles to the new server?

I used ROBOCOPY already to copy all the files. I all you need to do change the server name in the profile section of the user in active directory then this is done and I checked on user for roaming by creating a new folder on the desk top of one workstation and it shows on another workstation.

I had 2 users that had access denied messages with ROBOCOPY. I was able to complete 1 by logging onto the workstation as that user and copy over to a common drive and then copy it to the new server. However I still have the one thats a problem. When I tried the same process the work station came back with a profile error. At the new server it appears the folder is there now but I again can't access it.

I do see kiktart on the workstations on bootup, could this have something to do with why I can't get and Administrator to view this folder?

There is a database that still needs to come over and I will have to do this tomorrow when the office manger has the time get me in touch with the application vender to give us guidence for this. Once this is done I can demote the old server2.
Can Anyone help with Kiktart and if this is interfering with the ROBOCOPY?

What is the permissions on the folder that is located on the server?

Well all is completed for Serv2008.
I had to logon locally as the user that had access denied and did a copy this way. Even adding Domain admins and administrators to the security didn't help. Anyway his profile is now copied over. I removed kiktart out of the logon scripts so that it doesn't get used.
I had to go to some of the workstations and remove the shares as the logon script was over ridden by local shares added previously.
The last function I performed was installin DHCP install to the Serv2008 and deactivated it on the Server2. I then tried transfering the final fsmo role (Schema Master) from the Server2 over to the Serv2008 using the command line ntdsutil.exe and the transfer worked this time. I then proceded to dcpromo the Server2 (demote the Server2 from DC to a memeber server) and turned it off.
Thanks for the assistance guys.

Some points added to Dariusg to start the articals off in the right direction and the rest to Tigermatt for the relevent interaction and help.
Thanks again