We are looking to move to a 2008 functional level in our domain, and possibly to rename that domain (from *ourname*.com to *ourname*.local or some such).
We have approximately 30 servers and maybe 200 users. Our AD structure is a mess right now, with over 500 security groups, a mess of redundant and pointless OU's, etc. It seems like there would be a lot of benefit from creating a brand new domain, but a lot of pain as well.
This domain was, so far as I'm aware, created in NT4 and has been upgraded to the 2003 level that it's at now without ever having been blown away, so it seems like the time for it.
I'd like to know what best practice is, what the pros/cons of both sides of the coin are (upgrading this domain again or creating a new domain), and what you folks have done and the challenges you've faced.