• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 370
  • Last Modified:

2003 DCs + 2008

We currently have about 6-8 Server 2003 Domain Controllers in our network.  We have created two Server 2008 R2 servers that we plan to promote to DCs as well, make one of them the FMSO, in the hopes of raising the functional level of the domain to 2008 level.

Is it possible to do all this while leaving the 2003 DCs in place?  Some of these DCs are in branch offices that will take some time to get to before they can be upgraded to Server 2008 or replaced entirely (some are not 64-bit capable).  What are the ramifications in leaving them in production?
0
SR_Tech
Asked:
SR_Tech
  • 2
  • 2
3 Solutions
 
Brian BEE Topic Advisor, Independant Technology ProfessionalCommented:
As long as you don't raise the domain functional level above 2003, you should be fine.
0
 
SR_TechAuthor Commented:
So it's not possible to raise the functional level until all DCs are running Server 2008?
0
 
SR_TechAuthor Commented:
As well, is it a good idea to make one of the 2008 R2 servers the FSMO or should we leave it as one of the 2003 servers?
0
 
Krzysztof PytkoSenior Active Directory EngineerCommented:
Hi, please visit my blog at http://kpytko.wordpress.com and look for adding first Windows Server 2008 R2 as Domain Controller in 2003 network.

Yes, there is no problem running 2008 and 2003 DCs together. You need to only prepare schema for new DC. And yes, transfer FSMO roles to one of the new DCs based on 2008. Microsoft recommends stroring them on the latest OS DCs.

The lowest OS on your DC determines the highest possible Domain Functional Level

Regards,
Krzysztof
0
 
Krzysztof PytkoSenior Active Directory EngineerCommented:
OK, now direct links to posts :)

Addind the first 2008 R2 DC to 2003 network
http://kpytko.wordpress.com/2011/08/25/adding-first-windows-server-2008-r2-domain-controller-within-windows-2003-network/

Transferring FSMO roles
http://kpytko.wordpress.com/2011/08/26/transferring-fsmo-roles-from-gui/
http://kpytko.wordpress.com/2011/08/26/transferring-fsmo-roles-from-command-line/

and if you transfer FSMO roles (especially PDC Emulator master) you need to reconfigure time source in a forest

[...]- after transfer of the PDCEmulator role, configure the NEW PDCEmulator to an external timesource and reconfigure the old PDCEmulator to use the domainhierarchie now. Therefore run on the NEW "w32tm /config /manualpeerlist:PEERS /syncfromflags:manual /reliable:yes /update" where PEERS will be filled with the ip address or server(time.windows.com) and on the OLD one run "w32tm /config /syncfromflags:domhier /reliable:no /update" and stop/start the time service on the old one. All commands run in an elevated command prompt without the quotes[...]

it's an extract from one of MVP's blog at
http://msmvps.com/blogs/mweber/archive/2010/02/10/upgrading-an-active-directory-domain-from-windows-server-2003-to-windows-server-2008-or-windows-server-2008-r2.aspx

Krzysztof
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell┬« is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

  • 2
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now