We help IT Professionals succeed at work.

Check out our new AWS podcast with Certified Expert, Phil Phillips! Listen to "How to Execute a Seamless AWS Migration" on EE or on your favorite podcast platform. Listen Now

x

Replacing server 2003 domain controllers and renaming them

tferro999
tferro999 asked
on
Medium Priority
421 Views
Last Modified: 2012-05-11
I need to replace two aging DCs in a subdomain of my AD forest with two new DCs using the same names and IP addresses of the originals.  All the DCs are running server 2003 and the domain functional level is windows server 2003.

I've read plenty on the process of renaming a DC, but is there anything to watch out for when renaming a DC using the name of a DC that was just demoted?

Here is the setup and plan so far....

The existing DCs are DC1 and DC2.  DC1 has the RID, PDC, and infrastructure ops FSMO roles as well as DNS, DHCP, and WINS.  DC2 has the global catalog, DNS, and WINS.  The new DCs are DC1new and DC2new which are already joined to the domain and have been promoted.  

To replace DC1 with DC1new

1.)      Export WINS database from DC1 as backup.  After the rename, if I add DC2 as a WINS replication partner it should replicate the DB so I don’t need to import it manually?
2.)      Export DHCP database from DC1 using “netsh dhcp server export c:\dhcp.txt all”
3.)      Move RID, PDC, and Infrastructure ops manager roles to DC1new using ADUC and the properties tab of the domain
4.)      Verify replication is working.  What is the best way to do this?  Repadmin? Dcdiag?
5.)      Disable DHCP on DC1
6.)      Demote DC1 to member server, remove it from domain and turn it off.  Do I also need to delete it from AD sites and services?  Any other tricks to demotion?
7.)      Change IP address on DC1new to the IP of the old DC1
8.)      Rename DC1new to DC1 using the netdom steps found here http://www.petri.co.il/windows_2003_domain_controller_rename.htm
9.)      Rename sysvol member object
10.)      Import the DHCP database on the new DC1.  Since the IP is staying the same is there anything else to this step?
11.)      Setup WINS replication with DC2 (see step 1)
12.)      Done?

For renaming DC2new to DC2 I was going to follow the same plan with the exception of the DHCP steps since it isn’t running on DC2 and since the only FMSO role is global catalog, just use AD sites and services to enable the global catalog.

A final question about AD sites and services.  At the moment, the NTDS settings for DC1 and DC2 are slightly different.  DC1 only shows an auto generated connection to DC1new and DC2new.  DC2 has an auto generated connection to DC1new, DC2new, ForestDC1, and then two manually created connections to the two DCs in another subdomain.  DC1new and DC2new show auto generated connections to DC1 and DC2.  What will I need to create manually and what will be auto generated once all this madness is done?  At which point during my 12 steps listed above do I need to mess with these settings?


Comment
Watch Question

IT Consultant
CERTIFIED EXPERT
Commented:
Unlock this solution and get a sample of our free trial.
(No credit card required)
UNLOCK SOLUTION

Author

Commented:
Regarding the Infrastructure master and GC FSMO roles, I heard that they cannot exist on the same DC unless every DC in the entire Forest has a GC present.  Is this true, or will it work as long as both DCs in this subdomain have a GC?

7.) I was planning on waiting at least a day in between renaming the two DCs.

9.) http://technet.microsoft.com/en-us/library/cc787188(WS.10).aspx
http://support.microsoft.com/?id=316826

Thanks for your help with this.
Bruno PACIIT Consultant
CERTIFIED EXPERT

Commented:
Hi,

About GC and Infrastructure Master, if they are hosted on the same DC the Infrastructure Master will not work. BUT if all DCs in your domain are all GCs then you'll never need the Infrastructure Master of this domain so it doesn't matter if it doesn't work.

The infrastructure master problem is domain-level... So, whatever the situation in other domains of the forest, you just have to make a choice for your domain between 2 possibilities :

1) Make sure that you Infra Master is not hosted on a GC so that your Infra master is functionning
2) Or don't take care of the Infra Master and make all your domain's DCs to be GCs so that you won't need Infra Master


Personnally, I always make the second choice for my customers : Every DC is a GC and all is ok.
Unlock the solution to this question.
Thanks for using Experts Exchange.

Please provide your email to receive a sample view!

*This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

OR

Please enter a first name

Please enter a last name

8+ characters (letters, numbers, and a symbol)

By clicking, you agree to the Terms of Use and Privacy Policy.