Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 339
  • Last Modified:

LOST DC , NEED HELP

Worst nightmare occurred and Customer has no reliable backup.

Recently we added a  member server to  a customers current domain, added roles (dns dhcp, FS)  We ran ADPREP  2003 Server Promoted the 2008 Server as an additional Domain Controller
Migrate existing application specific  file data (XCOPY,  including  file date stamps )
Transition  FSMO roles  from old 2003 server (SERVER01) to new 2008 server (HSDCFS1)
Updated existing server to verify new DNS information.
DCPROMO SERVER01 to HSDCFS1

All was perfect and the customer was feelin the love, ....   then,  this weekend two drives died in the RAID 5 array. What are the odds.
The array was built with four drives (no hot swap).
We called seagate and tested the drives with Seatools. They are bad. The array is blown.

That Said.   PLEASE HELP !!!  
They have a single domain. The old DC is still active but does not hold the FSMO roles.
I will be receiving two new drives today  and need to build (rebuild ) the new server.

What would you Do?
Should I fix the old server to get the DC and FSMO back  ?
OR.. create the new server and a new domain,  then add the remove and add the old server and workstations to the new domain?

This needs to happen today . Can you help guide my decesion?

0
atredo
Asked:
atredo
  • 4
  • 4
1 Solution
 
Vinchenzo-the-SecondCommented:
You should be able to put the old DC back, I am assuming its a DNS server also.  You can seize the roles using ntdsutil, then roles.  If you don't have DNS it would be a lot easier to install a new domain.
0
 
atredoAuthor Commented:
The old server does have DNS running but the users were only using DNS from the blown server.
Before that the workstations were not part of the domain (configured as workgroup) and were set to use the ISP's DNS.  So they have only been on the domain for 45 days or so.



0
 
atredoAuthor Commented:
I will look up siezing the roles.

Can you elaborate on the Ntdsutil.exe  commands ?
0
Simplify Active Directory Administration

Administration of Active Directory does not have to be hard.  Too often what should be a simple task is made more difficult than it needs to be.The solution?  Hyena from SystemTools Software.  With ease-of-use as well as powerful importing and bulk updating capabilities.

 
Vinchenzo-the-SecondCommented:
Do the following from a command prompt: (Make sure your are a domain admin, and the account is a memeber of schema admins):

ntdsutil
roles
connections
connect to server {DC Name)
q
seize role schema master
seize role domain naming master
seize role pdc
seize role infrastructure master
seize role rid master
q
q

http://support.microsoft.com/kb/255504

Any issues please let me know/?
0
 
Vinchenzo-the-SecondCommented:
DC name will be the server you want to seize to
0
 
atredoAuthor Commented:
thanks , I will give it a go
0
 
atredoAuthor Commented:
okay, all are seized

You Da Man  !!!!

other than the login script, is there anything i should do?
0
 
Vinchenzo-the-SecondCommented:
Run dcdiag /v to make sure all is ok.  If you have any errors let me know.  Also check DHCP.  From an AD perspective that should be it.
0

Featured Post

Creating Active Directory Users from a Text File

If your organization has a need to mass-create AD user accounts, watch this video to see how its done without the need for scripting or other unnecessary complexities.

  • 4
  • 4
Tackle projects and never again get stuck behind a technical roadblock.
Join Now