If your organization has a need to mass-create AD user accounts, watch this video to see how its done without the need for scripting or other unnecessary complexities.
Solved
Backup of AD on domain controller
Posted on 2011-02-24
We have a file server running windows server 2008 standard with AD on it, this is a domain controller. We have another windows 2008 server running terminal services and is not a domain controller. We have another server running windows 2003 server on it and it is not being used for anything nor is it a domain controller. We would like to have either the terminal server or the 2003 server to have a backup of AD on it that could be used if the file server went down. Can anyone give us a hand on how this would be accomplished so that replication of AD would take place and would the terminal server or the 2003 server be the best choice.
[X]
Welcome to Experts Exchange
Add your voice to the tech community where 5M+ people just like you are talking about what matters.
- Help others & share knowledge
- Earn cash & points
- Learn & ask questions
2
2
- +2
7 Comments
however this is not the easy task, when you are talking about enterprise level. if you have less user, you have many choices. you might be interested in this...
http://technet.microsoft.com/en-us/library/bb727048.aspx
http://technet.microsoft.com/en-us/library/bb727048.aspx
I would recommend making that Terminal Services server into a Domain Controller. I know that if you have Active Directory originally running on a 2003 server, you can replicate it to 2008... but I don't believe you can do the opposite. Hop on your Terminal Services server and add the Domain Controller role. It will then go through some basic questions about your AD environment and will run dcpromo at the end. Once you reboot, it should begin replicating Active Directory data on it's own and advertise itself as a Domain Controller. I don't know the specifics of your network setup, but this is the process we use for our environment.
Hope this helps!
Nick
Hope this helps!
Nick
I would not put the DC on a terminal server.
What is your forest Functional level and domain level?
This will determine if you can promote the 2003 server to a DC.
follow the steps in this link but do not change the level just note what it is.
http://www.windowsnetworking.com/articles_tutorials/Determining-Functional-Level-Windows-Server-2003.html
What is your forest Functional level and domain level?
This will determine if you can promote the 2003 server to a DC.
follow the steps in this link but do not change the level just note what it is.
http://www.windowsnetworking.com/articles_tutorials/Determining-Functional-Level-Windows-Server-2003.html
You DO NOT put AD services on a Terminal Server this is a no no and you should not be done.
If your current forest and domain functional levels are set to Windows 2008 Server you would not be able to add Windows 2003 Server like Ken said.
You need to check this first.
Second if you are at a lower level you can add another DC very easily
http://technet.microsoft.com/en-us/library/cc733027(WS.10).aspx
If your current forest and domain functional levels are set to Windows 2008 Server you would not be able to add Windows 2003 Server like Ken said.
You need to check this first.
Second if you are at a lower level you can add another DC very easily
http://technet.microsoft.com/en-us/library/cc733027(WS.10).aspx
The functional levels are as follows
Domain - Windows Server 2008
Forest - Windows Server 2008
I guess then this rules out using either of the servers for this purpose. I guess the next step would be buying a new server and setting it up as a DC with AD and the repication would take place automatically.
Domain - Windows Server 2008
Forest - Windows Server 2008
I guess then this rules out using either of the servers for this purpose. I guess the next step would be buying a new server and setting it up as a DC with AD and the repication would take place automatically.
Getting another server would be the best way since your DFL and FFL are 2008. You do not want a DC on a terminal server.
http://technet.microsoft.com/en-us/library/cc733027%28WS.10%29.aspx
http://technet.microsoft.com/en-us/library/cc733027%28WS.10%29.aspx
Featured Post
Managing Active Directory does not always have to be complicated. If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why
Question has a verified solution.
If you are experiencing a similar issue, please ask a related question
This article provides a convenient collection of links to Microsoft provided Security Patches for operating systems that have reached their End of Life support cycle. Included operating systems covered by this article are Windows XP, Windows Server…
- Ransomware
- Experts Exchange
- Windows XP
- Windows OS
- Windows Server 2008
- Windows Server 2003, Security
Resolving an irritating Remote Desktop connection that stops your saved credentials from being used.
This tutorial will show how to configure a single USB drive with a separate folder for each day of the week. This will allow each of the backups to be kept separate preventing the previous day’s backup from being overwritten.
The USB drive must be s…
There are cases when e.g. an IT administrator wants to have full access and view into selected mailboxes on Exchange server, directly from his own email account in Outlook or Outlook Web Access. This proves useful when for example administrator want…
Suggested Courses
Course of the Month11 days, 22 hours left to enroll
636 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.