Solved

2008 adprep /domainprep

Posted on 2011-03-22
9
640 Views
Last Modified: 2012-05-11
I am attempting to move from a hosed up SBS 2000 domain to 2008 standard.  Am I going to affect logins or password policies by running 2008 adprep /domainprep and other adprep commands?  Trying to do this as seamless as possible.  At what point will password policy come into play.  I know 2008 uses complex passwords, not sure how it will affect existing users?
0
Comment
Question by:marty-240
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
  • 2
  • +2
9 Comments
 
LVL 22

Expert Comment

by:Joseph Moody
ID: 35193185
You should be fine. Complex passwords are not configured by default.
0
 
LVL 4

Accepted Solution

by:
philetaylor earned 167 total points
ID: 35193232
the ADPREP /forestprep and /domainprep merely modify the AD schema to allow it to accept 2008 domain controllers, no changes are made to password policies etc.

Cheers

Phil
0
 

Author Comment

by:marty-240
ID: 35193294
Sorry, I wasn't clear on this part of the question.
 During the upgrade process, at what point will password policy come into play?
0
Salesforce Made Easy to Use

On-screen guidance at the moment of need enables you & your employees to focus on the core, you can now boost your adoption rates swiftly and simply with one easy tool.

 
LVL 22

Assisted Solution

by:Joseph Moody
Joseph Moody earned 167 total points
ID: 35193302
It won't until you decide to implement complex password policies. An upgrade will use your exact same basic password policy.
0
 
LVL 78

Expert Comment

by:arnold
ID: 35193566
An upgrade of a hosed AD will get you to a hosted AD with newer interfaces.
I.e. if you have a clunker, putting new paint on it will not change it.

Could you elaborate what you mean that you have a "hosed" SBS 2000 AD.
0
 
LVL 70

Assisted Solution

by:KCTS
KCTS earned 166 total points
ID: 35193629
The password policy will take effect immediately for new users,  however any existingnusers will not be forced to use a complex password until their current password expires and must be changed - at that point a complex password must be used
0
 

Author Comment

by:marty-240
ID: 35193818
Domain has 3 DC's(sbs only allows for one), primary dc had crashed and an attempt made at reinserting it into the domain, exchange no longer in use or SQL.  A mess I inherited and we are moving away from.  Attempting to upgrade domain to an 08 domain, establish trusts with the new domain so the move will be less painful as users are moved away from resources, until resources can be moved too.  SBS does not allow trusts.
0
 
LVL 70

Expert Comment

by:KCTS
ID: 35194066
SBS can have as many DCs as you want - its not limited to one !
So long as the SBS machine has all the FSMO roles.

As I pointed out earlier SBS does not allow more than one domain (or trusts)
0
 
LVL 78

Expert Comment

by:arnold
ID: 35194909
Sine you have 2 other functional DC, you can use ntdsutils to sieze FSMO, RID and schema master roles.
restoring your domain to a functional level, note that the FAILED SBS must never be joined back without a reinstall if at all.
0

Featured Post

Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
New IP's needed ASAP 6 83
How to secure access to a folder on windows server 2008 R2 6 117
Automatic Windows Service stops by itself 6 108
Mac printing problem 1 41
Recently, Microsoft released a best-practice guide for securing Active Directory. It's a whopping 300+ pages long. Those of us tasked with securing our company’s databases and systems would, ideally, have time to devote to learning the ins and outs…
Auditing domain password hashes is a commonly overlooked but critical requirement to ensuring secure passwords practices are followed. Methods exist to extract hashes directly for a live domain however this article describes a process to extract u…
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
This is used to tweak the memory usage for your computer, it is used for servers more so than workstations but just be careful editing registry settings as it may cause irreversible results. I hold no responsibility for anything you do to the regist…

732 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question