Solved

Change out a Primary Domain Controller with a new server

Posted on 2010-11-30
6
454 Views
Last Modified: 2012-05-10
We have a Windows domain network with 10 servers.  All servers are running Windows 2003 standard.  We have a primary domain controller and a backup domain controller.  Our primary domain controller is 8 years old and we are planning to take it offline and replace it with another server.  The new PDC will have Windows 2008 standard.  We need some type of procedure to remove the current PDC and slip the new one in.  Active directory and global policies are the primary concern and need to be somehow brought over to the new server.  Data backup is not a problem as we will use our normal backup procedure to handle that task.  

We have over 100 users on the network and cannot setup new profiles on each end user workstation.  How can we put in a new domain controller and have it be recognizable to all the PCs on the network?  We do plan to keep the local domain name the same and the server name will be identical to the one it is replacing.  Aside from those obvious things, what else needs to be done.  

Thank you.
0
Comment
Question by:PCNNY
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
6 Comments
 
LVL 57

Accepted Solution

by:
Mike Kline earned 167 total points
ID: 34241677
Take a look at this question I helped with

http://www.experts-exchange.com/OS/Microsoft_Operating_Systems/Server/Windows_Server_2008/Q_26358376.html

A lot of information and good links.  Let me know what questions you have after going through that

You won' t need to setup new profiles

I would suggest that you use 2008 R2 at this point (if you can)

thanks

Mike
0
 
LVL 59

Assisted Solution

by:Darius Ghassem
Darius Ghassem earned 166 total points
ID: 34241837
0
 
LVL 11

Assisted Solution

by:Renato Montenegro Rustice
Renato Montenegro Rustice earned 167 total points
ID: 34243091
There are some misconceptions here. There is no PDC/BDC since Windows NT. Active Directory is fully replicated among all of your domain controllers.

What you have are some special roles that can reside in a domain controller. To check out where they are, make sure the Windows 2003 Support Tools are installed and type this command:

netdom query fsmo

Then:

1) Extend your schema to Windows 2008
2) DC promo your new server. At this point, your users will access your new server. There's no need to do anything else.
3) Adjust your DNS servers configuration on the client computers, if needed.
4) Transfer the roles to the new server: http://support.microsoft.com/kb/255504
5) Shut down your old server(s) and evaluate the environment
5) Decommission your old server(s). DC promo them.
0
Use Case: Protecting a Hybrid Cloud Infrastructure

Microsoft Azure is rapidly becoming the norm in dynamic IT environments. This document describes the challenges that organizations face when protecting data in a hybrid cloud IT environment and presents a use case to demonstrate how Acronis Backup protects all data.

 
LVL 57

Expert Comment

by:Mike Kline
ID: 34243105
...well fully replicated unless we are talking about RODC's

You would also want to install DNS on the new box and make it a global catalog.  All explained in the links Darius and I provided.

Thanks

Mike
0
 
LVL 11

Expert Comment

by:Renato Montenegro Rustice
ID: 34243218
If I understood well, he will replace the domain controller. It wont be a RODC. But I forgot to mention the Global Catalog. Thanks.
0
 

Author Closing Comment

by:PCNNY
ID: 34266314
Thank you.  Great info
0

Featured Post

Transaction Monitoring Vs. Real User Monitoring

Synthetic Transaction Monitoring Vs. Real User Monitoring: When To Use Each Approach? In this article, we will discuss two major monitoring approaches: Synthetic Transaction and Real User Monitoring.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Background Information Recently I have fixed file server permission issues for one of my client. The client has 1800 users and one Windows Server 2008 R2 domain joined file server with 12 TB of data, 250+ shared folders and the folder structure i…
A hard and fast method for reducing Active Directory Administrators members.
This tutorial will give a short introduction and overview of Backup Exec 2012 and how to navigate and perform basic functions. Click on the Backup Exec button in the upper left corner. From here, are global settings for the application such as conne…
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …

687 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question