• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 2531
  • Last Modified:

Adding a 2008R2 Domain controller to an existing 2003 domain, keeping functional level at 2003

Hello All!


I have seen some answers to this question on here for this question but I have not seen anyone explicitly state what I am asking so here goes.


We currently have 2 Windows  2003 domain controllers.  Functional level for AD is 2003 Native.  We have created a VM with Windows 2008 R2 on it and want it to be an additional domain controller in our Windows 2003 AD environment.

basically we want to add a 2008 server in ad a Domain controller but still keep the functional level at 2003 until we are ready upgrade the domain to 2008.  we want the 2008 domain controller to act as a 2003 domain controller until we are given the go ahead  to upgrade the domain to 2008.

I understand that you will need to run adprep /forestprep and adprep/domainprep

are these commands run on the existing 2003 domain controllers?  If so then from what I have read you need to use the adprep32.  Will these commands try to upgrade the domain functional level to 2008?  

I'm weary about adding this server as a domain controller because at this time we DO NOT want to upgrade our domain functional level (or active directory) to 2008, we just want to use the 2008 server as a 2003 domain controller.


on a separate note we are running Exchange 2007 in our environment.  will this in any way effect Exchange at all?  will anything need to be done on the Exchange server at all?


My books on these subjects are back ordered :)  any help appreciated!

Let me know what ya'll think and thank you very much!
if any additional details are needed please let me know.
0
teksouth
Asked:
teksouth
  • 4
  • 3
  • 2
  • +3
2 Solutions
 
Lee W, MVPTechnology and Business Process AdvisorCommented:
simply running ADPREP and/or adding a 2008R2 DC is not going to change the functional level of the domain.  YOU have to make that change manually when you are ready.


Quoting http://www.petri.co.il/windows-server-2008-adprep.htm
ADPREP /forestprep must be run on the Schema Master of a forest and under the credentials of someone in the Schema Admins and Enterprise Admins groups.

ADPREP /domainprep must be run on the Infrastructure Master of a domain and under the credentials of someone in the Domain Admins group.


0
 
rizla7Commented:
I am about to test this exact scenario. I think it should be pretty straight forwards, except that 2008 r2 assigns different default domain policies and i'm not sure how that comes into play yet.

I think the default func. level for 2008 r2 is 2003 native. can't remember.

What I would do if you have a box with similar hardware, or at least same chipset storage controller and clone a DC to it. so you can test it on a separate network.
0
 
mmarx82Commented:
Not only do you manually have to do that as leew stated, from my understanding all the servers would have to be 2008 servers anyways before you could do it.
0
Never miss a deadline with monday.com

The revolutionary project management tool is here!   Plan visually with a single glance and make sure your projects get done.

 
Mike KlineCommented:
I worked on a similar question over at the Technet forums

http://social.technet.microsoft.com/Forums/en-US/winserverDS/thread/c436cc20-aaa8-48f7-b865-75541ba54e2c/

...like leew stated it won't do anything to your functional levels.

If you want just a 2008 member server in your domain, that is ok too, for a member server no schema update is required.

one note on the adprep when you are ready for it.  There are two versions on the 2008 R2 disc.  adprep32 (if your 2003 box is 32 bit) and adprep (64 bit).  John has a good blog on it here http://policelli.com/blog/?p=433

As far as exchange 2007, great matrix here:

http://technet.microsoft.com/en-us/library/ee338574(EXCHG.80).aspx

As you can see it can't be run on a 2008 R2 box but works fine in a 2008 R2 domain, and with 2008 R2 DCs.

Thanks

Mike

0
 
rizla7Commented:
well, i can now confirm having joined and promoted a win 2008 r2 dc/dns server to a win 2003 dc/dns server. dns and sysvol are replicating normally. no errors to report after 1 hour.

I do not however have exchange installed. this is just a test environment.
0
 
Lee W, MVPTechnology and Business Process AdvisorCommented:
funny, I thought *I* said that... mkline even said as much... and no thank you by splitting... interesting...
0
 
teksouthAuthor Commented:
leew,

I sincerely apologize.  is there anyway I can split it?  I did it in a rush.
0
 
Lee W, MVPTechnology and Business Process AdvisorCommented:
Don't worry about it this time.  Consider in the future that everyone here volunteers their time to help you and the only payment we can get is the points.  To me, it's a way of saying thank you for taking the time to help me and contributing useful information quickly.  
0
 
teksouthAuthor Commented:
yes it is very useful information and by no means did I mean to slight anyone out of anything.  it was not done intentionally.  thank you very much for your help with this issue.  your insight was definitely helpful in resolving this issue.
0
 
Mike KlineCommented:
You can split, just click on request attention and ask the mods to split...not everyone knows about the split.  

Split would be great here.

Thanks

Mike
0
 
teksouthAuthor Commented:
done.  let's see if it works :)
0
 
teksouthAuthor Commented:
Thank you both for the help!
0
 
alainboisvertCommented:
Am sorry I don’t fully understand what you mean when you told me to promote a 2008 box:/

Explain it to me if it not what you asked me to try…

There is what I understand of it… executing dcpromo on the 2008 server….
If you mean that I tried it, but I receive a message that asked me to run adprep /forestprep first
0

Featured Post

The new generation of project management tools

With monday.com’s project management tool, you can see what everyone on your team is working in a single glance. Its intuitive dashboards are customizable, so you can create systems that work for you.

  • 4
  • 3
  • 2
  • +3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now