Promote Windows 2003 memebr server to Domain Controller

A while back I was configuring a new windows 2003 R2 server and new domain.
The time table was accelerated when the old windows 2000 DC died on us.
The new domain is up and running with no problems.
DCDiag & NetDiag return no errors.

I now have a second windows 2003 R2 member server. On this server I have setup DFS.
Now I want to promote this server to DC.

Can I just run DCPromo and follow the instructions?
Do I specifically have to install DNS before hand?
Do I need to change the Domain Functional Level to 2003 prior to update or can this happen afterwards as well?
Do I need to run adprep, domainprep and / or forestprep?

I am also unsure as to what will happen to the DFS namespace hosted on the second server when I run DCPromo.

I think I can just run DCPromo and follow the instructions after I change the functional level to Windows 2003, but just in case.......

Any help is much appreciated.
LVL 2
DennisPostAsked:
Who is Participating?
 
PakaConnect With a Mentor Commented:
Can I just run DCPromo and follow the instructions?  If it is already a member server - yes.

Do I specifically have to install DNS before hand? No, it will use the DNS that the member server is using; you might want to add the DNS to the new server later.

Do I need to change the Domain Functional Level to 2003 prior to update or can this happen afterwards as well?  No, it will use the functional level from the existing DC.

Do I need to run adprep, domainprep and / or forestprep?  No, that's a one time task; if you ran it on the first server there's no need to run it again.

DFS should be OK.
0
 
AmericomConnect With a Mentor Commented:
You should definitely install DNS services(before or after running dcpromo) and make your newly promoted DC as a DNS server as well. Configure it as Active Direcotry-Integrated zone exactly like the other DC so that any upddate on DNS gets replicated to both DCs. If these are the only DC you have you should also make it as a GC as well to make it as redundant as possible.
0
 
DennisPostAuthor Commented:
>> Do I need to run adprep, domainprep and / or forestprep?  No, that's a one time task; if you ran it on the first server there's no need to run it again.
I did not do this on the existing DC. It was installed stand alone then directly promoted to DC.
Does this info change your advice?
0
Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell® is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

 
mail2prabirConnect With a Mentor Commented:
Hi,

further to what Paka has said, the replies to your queries are:

Can I just run DCPromo and follow the instructions?  
yes, just run dcpromo and select Additional DC for the existing domain and follow the instructions.

Do I specifically have to install DNS before hand?
No not required.

Do I need to change the Domain Functional Level to 2003 prior to update or can this happen afterwards as well?
the functional level can be raised subsequently also.

Do I need to run adprep, domainprep and / or forestprep?
no, just dcpromo

I am also unsure as to what will happen to the DFS namespace hosted on the second server when I run DCPromo.
since it is already a domain member, no problem is anticipated due to new role. though now the default domain controller group policy would apply on it instead of default domain policy. check the default domain controller group policy on the DC pertaining to DFS service before you go for DCpromo.

revert back in case of any other queries
0
 
PakaConnect With a Mentor Commented:
If you already have Exchange server running on your domain, then you won't need to rerun adprep, domainprep or forestprep.  If you add them in the future, then and haven't run them, then you will need to run them before the Exchange install.
0
 
DennisPostAuthor Commented:
How can I make the new DC a GC as well?
0
 
AmericomConnect With a Mentor Commented:
0
 
Mike KlineCommented:
Definitely make it a GC -- see bullet 1
http://adisfun.blogspot.com/2009/04/lessons-learned-from-eric-fleischman.html
Thanks
Mike
0
 
DennisPostAuthor Commented:
One last question(s) before I follow your advice.

When I do this, will the DFS namespace still be available? It is stored in AD isn't?
In other words, will users notice that I have rebooted the server?

I want to avoid doing this in unpaid (And Unnoticed) over time. But of course if it has to be done in off hours, I will.
0
 
PakaConnect With a Mentor Commented:
Did you create your DFS as a domain or a standalone DFS?  If you created it as a domain DFS, it should be held in AD.
0
 
DennisPostAuthor Commented:
I created DFS using DFS Managment, not Distributed File System.
How can I check that it is indeed in AD?
0
 
DennisPostAuthor Commented:
Thanks guys!

One note though. I did have problems with some DFS data, but only with the users that logged off during the update. When they logged on again, they connected to the old source that hadn't been replicated. This would likely have been avoided it the DFS replication was more frequent. The PST files are only replicated between 2-4am.  Therefore emails were missing between the last replication and the rebooting of the new DC.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.