Solved

Turning the read-only domain controller feature on after install

Posted on 2011-02-23
2
353 Views
Last Modified: 2012-05-11
I know Win 2008 server has a read-only feature but can this be truned on after the DC has been build and running in the Domain?

I want to retrospectively turn this on for one of my DCs.  Is it possible?  
0
Comment
Question by:wannabecraig
2 Comments
 
LVL 37

Accepted Solution

by:
Neil Russell earned 125 total points
ID: 34959778
No. as far as I am aware you must do this when you run DCPROMO to create the DC
0
 
LVL 39

Assisted Solution

by:Krzysztof Pytko
Krzysztof Pytko earned 125 total points
ID: 34959784
Nope, RODC is a Read Only Domain Controller and you have to define if you want to promote it as RODC during promotion process. For that you need at least Windows 2003 Forest Functional level and at least one Writable 2008 DC to be able to install RODC. If you have 2003 FFL then you need to also run

adprep /rodcprep

before install the first RODC.

Regards,
Krzysztof
0

Featured Post

Does Powershell have you tied up in knots?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Disabling the Directory Sync Service Account in Office 365 will stop directory synchronization from working.
This article runs through the process of deploying a single EXE application selectively to a group of user.
This tutorial will walk an individual through locating and launching the BEUtility application and how to execute it on the appropriate database. Log onto the server running the Backup Exec database. In a larger environment, this would generally be …
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …

816 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now