Link to home
Start Free TrialLog in
Avatar of mikesteven
mikesteven

asked on

secondary AD - for backup

Hi,

I have a freshly installed windows 2003 server with AD and I have an older version win2k server and I was thinking, can I use that as a backup incase anything happens to the main DC?

If so, do I set it up as additional domain controller for the existing domain? If I turned off the main DC my win2k server will take over?

Cheers!
Avatar of Darius Ghassem
Darius Ghassem
Flag of United States of America image

What is your Forset Functional Level? If the forest functional is 2003 then you can't all DCs must be at least 2003.

http://www.petri.co.il/raise_forest_function_level_in_windows_2003.htm
Yes, you can DCPROMO the 2000 server, make it a Global Catalog server, and it will handle authentication if the other DC is down.  Make sure that other services such as DNS are also fault-tolerant in order for clients to find the new DC.
 
 Note that if the other DC were to die permanently then you would eventually need to seize the FSMO roles, but that is not a short-term concern.
Ah, yes, assuming the functional level permits it.
ASKER CERTIFIED SOLUTION
Avatar of CreditSoupTech
CreditSoupTech

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of CreditSoupTech
CreditSoupTech

Another article on forcing the FSMO transfer.
http://www.petri.co.il/transferring_fsmo_roles.htm
Yep, ,your win2k DC should take over if anything were to happen with your current DC.  Just remember to install DNS and make sure it is replicating properly before you promote the server to a domain controller.  And once finished make sure it is configured as a Global Catalog server.
If you only have a win2k3 DC, why use a win2k as an additional DC? Why not just trash the win2k OS and get it on Win2k3 before dcpomo it as additional DC? Unless there's application you have in the Win2k3 cannot be interrupted. Otherwise, adding a Win2k as an additional DC will only hold you up to have only win2k native mode which will downgrade some of the Windows Server 2003 native mode. So, I would suggest you take a slight effort to add win2k3 DC rather than going backward with win2k DC.
As mentioned from the above experts, if you have raised you win2k3 to navtive mode, you can't add a win2k DC to a win2k3 domain with native mode.
Avatar of mikesteven

ASKER

Finish isntalling DNS on the win2k, do I need to setup replication before I hit dcpromo? How can do I replicate dns?
SOLUTION
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
dariusq,

Finish executing dcpromo, When I open the users & computer AD, it looks to be the same as the main DC and sadly for DNS there was nothing defined on forward and reverse...I think it's not yet configured. What can we do?
Go to DNS then right-click Forward Lookup Zones then create a new zone.


http://support.microsoft.com/kb/323445
thanks! I thougth the DNS will be replicated?
Once you install the zones then it will replicate but the DNS server and AD needs to see the zones listed so it knows to replicate.
dariusq,

I added the forward & reverse zones with AD integration, it has been 1 day and no replication yet...not sure what I'm missing..
SOLUTION
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
I agree with Americom post.