changing domain name from .com to .local

Posted on 2008-11-17
Last Modified: 2012-05-05
I currently have a AD server that does multiple roles- AD/ DNS/ File server/ printserver.  The domain is currently called, i would like to move AD and DNS to a new server and change it to domain.local .  The old server would only be used as a file and print sever.  What would be the best way to do this procedure? i want to be able to move the OU's and thier group policy over as well. Will i have to rejoin all the users to the new domain.local and move thier profile settings.
Question by:theITdude
    LVL 15

    Accepted Solution

    To move to a new domain is a big task, you will have to create the new domain, create the trusts and then migrate all accounts and computers from the old domain to the new domain. Then the servers and environment.

    You can do this using the Active Directory Migration Tool (ADMT) - which will move the accounts and computers (including profiles) to the new domain:
    Robocopy could be used to copy the data to the new server and subinacl to migrate the Security on the files and shares from the old domain SID's to the new domain SID's:

    Ideally you need to backup everything, trial it and then phase the migration.

    Or you could look at the Domain Rename tool:

    This would enable you to rename the domain quite simply. You could then add the new server to the infrastructure and move all the FSMO roles to the new server and then uninstall the old server and add back as a file and print server - probably would be a lot easier. - Again backup and test before implementing


    Author Comment

    Thanks for the info.
    Are there any advantages/disadvantages when using the Domain Rename Tool vs ADMT?
    LVL 70

    Expert Comment

    You can use the domain reanme tool if the server is running in Windows 2003 functional level - by why bother - renaming a domain is a complex task and is not without risk.  having an internal domain named .com is perfectly acceptable.

    Featured Post

    PRTG Network Monitor: Intuitive Network Monitoring

    Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

    Join & Write a Comment

    As network administrators; we know how hard it is to track user’s login/logout using security event log (BTW it is harder now in windows 2008 because user name is always “N/A” in the grid), and most of us either get 3rd party tools, or just make our…
    Find out how to use Active Directory data for email signature management in Microsoft Exchange and Office 365.
    This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
    This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …

    731 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    18 Experts available now in Live!

    Get 1:1 Help Now