Backup of AD on domain controller

We have a file server running windows server 2008 standard with AD on it, this is a domain controller. We have another windows 2008 server running terminal services and is not a domain controller. We have another server running windows 2003 server on it and it is not being used for anything nor is it a domain controller. We would like to have either the terminal server or the 2003 server to have a backup of AD on it that could be used if the file server went down. Can anyone give us a hand on how this would be accomplished so that replication of AD would take place and would the terminal server or the 2003 server be the best choice.

ine2003

Asked: 2011-02-24

Advertise Here

Windows Server 2008

2 Solutions

LVL 3

rabindrajhaCommented: 2011-02-24

however this is not the easy task, when you are talking about enterprise level. if you have less user, you have many choices. you might be interested in this...
http://technet.microsoft.com/en-us/library/bb727048.aspx

LVL 2

helpdesk_ninjaCommented: 2011-02-24

I would recommend making that Terminal Services server into a Domain Controller. I know that if you have Active Directory originally running on a 2003 server, you can replicate it to 2008... but I don't believe you can do the opposite. Hop on your Terminal Services server and add the Domain Controller role. It will then go through some basic questions about your AD environment and will run dcpromo at the end. Once you reboot, it should begin replicating Active Directory data on it's own and advertise itself as a Domain Controller. I don't know the specifics of your network setup, but this is the process we use for our environment.

Hope this helps!

Nick

LVL 27

KenMcFCommented: 2011-02-24

I would not put the DC on a terminal server.
What is your forest Functional level and domain level?

This will determine if you can promote the 2003 server to a DC.

follow the steps in this link but do not change the level just note what it is.

http://www.windowsnetworking.com/articles_tutorials/Determining-Functional-Level-Windows-Server-2003.html

LVL 59

Darius GhassemCommented: 2011-02-24

You DO NOT put AD services on a Terminal Server this is a no no and you should not be done.

If your current forest and domain functional levels are set to Windows 2008 Server you would not be able to add Windows 2003 Server like Ken said.

You need to check this first.

Second if you are at a lower level you can add another DC very easily

http://technet.microsoft.com/en-us/library/cc733027(WS.10).aspx

ine2003Author Commented: 2011-02-24

The functional levels are as follows

Domain - Windows Server 2008
Forest - Windows Server 2008

I guess then this rules out using either of the servers for this purpose. I guess the next step would be buying a new server and setting it up as a DC with AD and the repication would take place automatically.

LVL 27

KenMcFCommented: 2011-02-24

Getting another server would be the best way since your DFL and FFL are 2008. You do not want a DC on a terminal server.

http://technet.microsoft.com/en-us/library/cc733027%28WS.10%29.aspx

LVL 59

Darius GhassemCommented: 2011-02-24

I would have to agree another server would be the best solution. I would recommend installing Hyper-v so in future you could use the same hardware for multiple virtual machines

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Expand your skills with this month's free Premium course.

Backup of AD on domain controller

Join & Write a Comment Already a member? Login.

Featured Post