Link to home
Create AccountLog in
Avatar of Justin H
Justin HFlag for United States of America

asked on

How to upgrade the Active Directory in our environment from 2003 to 2008R2

Our topology consists of 7 Servers.

1 - Server 2003 SP2, GC/DC
1 - Server 2003 SP2, DC
1 - Server 2003 R2, DC, Exchange Server
1 - Server 2003 R2, Member Server
1 - Server 2003 SP2, File Server
1 - Server 2008 R2, Terminal Server
1 - Server 2008 R2, File Server

Our current forest level is 2000, and the domain level is 2003.  Is it save to say that I can just put a 2008 R2 cd in the GC/DC and run the forest prep and ad prep commands to upgrade the levels?  If there is anything else that we need to be aware of so we dont break the domain, that would be appreciated. Thanks.
ASKER CERTIFIED SOLUTION
Avatar of Lee W, MVP
Lee W, MVP
Flag of United States of America image

Link to home
membership
Create an account to see this answer
Signing up is free. No credit card required.
Create Account
Avatar of Justin H

ASKER

I want to eventually turn the 2003 GC/DC to a 2008 R2 GC/DC but at this point i just wanted to upgrade the domain to support DFS that I am trying to get working on the two 2008 servers.  I cant get them to work properly together because I dont think the AD is supporting it.
Also, my forest level is 2000. Should I move that to 2003 right now?
SOLUTION
Link to home
membership
Create an account to see this answer
Signing up is free. No credit card required.
Create Account
Ok, so what would you say is the best way to migrate that 2003 GC/DC to to 2008? I can migrate the roles to a new 2008 GC/DC box, but I need to eventually get the 2008 box to work at the same IP address that the decomissioned 2003 box was at.  Also, what do should I be concerned with on the other DC's that are 2003 and 2003 R2 for the exchange server? Can those be DC's with the newly 2008?
> but I need to eventually get the 2008 box to work at the same IP
> address that the decomissioned 2003 box was at
Why?  Why do you need to keep the same IPs?  

So long as the mode of the domain is not higher than an existing DC, all DCs should be able to communicate with each other, assuming you have everything setup properly.
Well all of the workstations that are on the network are pointed to that DNS server which is the GC/DC for authentication. So it would be necessary I suppose in order for them to authenticate, right?
SOLUTION
Link to home
membership
Create an account to see this answer
Signing up is free. No credit card required.
Create Account
This question has been classified as abandoned and is being closed as part of the Cleanup Program. See my comment at the end of the question for more details.