Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

Best method to move a 2k3 DC to physically different 2k8 server?

Posted on 2009-05-17
6
Medium Priority
?
461 Views
Last Modified: 2012-05-07
Hello,
Current my network consists of two DC's (DC1 and DC2).  DC1 is the DC with the GC. I want to move the entire AD from this server to a physically new 2k8 server.  Which is the best/most reliable method in doing this?
Should I promote the 2k8 server to a DC with all roles, and then let replication copy all the data to the new server, and then demote the old DC1 server?  
Or
should I upgrade the 2k3 server to 2k8, make a backup, and move the entire backup over to the 2k8 box?  

Obviously the second option is a longer process (and in my mind, more prone to data errors)

 The reason I have not mentioned DC2 is because it is running purely as a backup, and it's primary function is actually
 as an internal sharepoint server.

 My network does have 2 sharepoint servers, Exchange 2k7, MsSQL 2k5 and 2k8 servers.  I intend to add a 2k8 storage server and run a small SAN in the near future.

 Also, a small side question: Is there a tool that will validate an AD for "best practices" ?  

The reason I ask, is because I was not the one who setup this AD forest, and it seems to have some issues. For example: If I create a new user in AD, the user does not automatically get replicated to the exchange server. Any good resources/books/websites would be awesome information to have.

 Any help/suggestions are MORE then welcome and apreciated,

 O.B.
0
Comment
Question by:privasoft
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
6 Comments
 
LVL 3

Expert Comment

by:ddanonimity
ID: 24406760
Connect the server to the network and promote it to a domain controller in active directory. The promote it to GC. It should automatically propogate from one server to the other.
0
 
LVL 27

Expert Comment

by:bluntTony
ID: 24406771
Your best bet would be to promote the new server to become a DC, then demote the old PC. You don't need to backup the entire server to transfer the AD database.
When the new server is promoted it'll get a complete copy of AD. Besides, like you say, you're asking for hardware related problems using the backup method.
Before you demote the original server, transfer any FSMOs over to the new server and make it a GC. Bear in mind that this is just AD, not anything else on the original server.
When you say that the users aren't appearing on the Exchange server, is the Exchange server also a domain controller? How are you viewing the users on the Exchange server?
0
 

Author Comment

by:privasoft
ID: 24407082
The exchange server is NOT a DC, and I am using Exchanges console to view users.  
0
Veeam Task Manager for Hyper-V

Task Manager for Hyper-V provides critical information that allows you to monitor Hyper-V performance by displaying real-time views of CPU and memory at the individual VM-level, so you can quickly identify which VMs are using host resources.

 

Author Comment

by:privasoft
ID: 24407149
I forgot to add that the DC1 server is also running as a DHCP and DNS server, will promoting the 2k8 server also port these configurations ?
0
 
LVL 17

Accepted Solution

by:
OriNetworks earned 900 total points
ID: 24407443
After promoting the server 2008 server and moving all roles, you would of course have to install any other roles that the original server was hosting. So on the new 2008 server you will have to update any DNS settings and install DHCP. If installed correctly, DNS should not require any additional configuration in order to replicate correctly. You can use netdiag and dcdiag to verify AD functionaility before demoting DC1

As for Exchange 2007 not "seeing users"...from my understanding with the new architecture of Exchange 2007, it isnt as closely integrated as it use to be. User mailboxes will not automatically be created so the mailboxes wont exist until you actually create it for the existing user account. To avoid doing extra work, you can setup an exchange shell script and put it in task manager that will check for user accounts without mailboxes and create them.
0
 
LVL 27

Expert Comment

by:bluntTony
ID: 24409637
DNS will be moved over as it is (or should be) part of the AD database.

Just install the DNS server role in 'Role Management' and the DNS zones will drop into the DNS console on the new server. DHCP is not integrated with AD so you will have to add the role and configure the new server. You can make a backup of the existing DHCP DB and import it into the new DHCP server, but with a lot of setups it's a quick job to just configure the new server from scratch. Once you've done this, just disable the DHCP service on the old server and the new one will start giving leases out.


0

Featured Post

 [eBook] Windows Nano Server

Download this FREE eBook and learn all you need to get started with Windows Nano Server, including deployment options, remote management
and troubleshooting tips and tricks

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Uncontrolled local administrators groups within any organization pose a huge security risk. Because these groups are locally managed it becomes difficult to audit and maintain them.
After seeing many questions for JRNL_WRAP_ERROR for replication failure, I thought it would be useful to write this article.
This tutorial will walk an individual through the steps necessary to install and configure the Windows Server Backup Utility. Directly connect an external storage device such as a USB drive, or CD\DVD burner: If the device is a USB drive, ensure i…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…

722 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question