Steps to Upgrade 2003/2008 AD to purely 2008 R2 AD

Posted on 2011-10-06
Last Modified: 2012-05-12

Hi Experts:

I have a relatively simple network here that I would like to upgrade. Our current system in:

1 Server 2003 AD Controller / DNS called DC1
1 Server 2008 (32) AD Controller / DNS called DC2
We are running at the Server 2003 Functional Level and use static IP.

I recently purchased 2 new 64 bit servers for domain controllers / DNS and would like to use them to upgrade the network to a purely Server 2008 R2 domain. I have a rough plan in place but I need help proofing it and with specific details/commands.

My Rough Plan:

1) After a good backup... On a weekend move all FSMO roles to DC2 (Server 2008 32-bit) and demote DC1 (Server 2003).
2) Upgrade DC2 to Server 2008 Functional Level
3) Run adprep32 / forestprep, adprep32 / domainprep and adprep32 / domainprep / gpprep on DC2 to prepare it for the 2008 R2 servers
4) Install one of my new Server 2008 R2 servers (with same IP as the old DC1) into the domain as a AD controller / DNS server called DC3
5) Wait a few weeks.
6) Move all FSMO roles to DC3
7) Demote DC2 and install the remaining Server 2008 R2 Server as DC4 (with same IP as the old DC2).

That's my plan but I'm concerned that I'm missing a detail or two.



Question by:yaklab
    LVL 59

    Accepted Solution

    Actually everything looks good

    Here is are some other guides to read over as well

    Make sure before moving any roles or demotion you run dcdiag to check health of the domain.

    Many admins I have helped assumed everything was functioning properly just because everything was running with any user complaints but didn't run a dcdiag to actually make sure the systems were running properly
    LVL 57

    Expert Comment

    by:Mike Kline
    When you demote DC1 and DC2 I'd also change their IP after demotion so that you don't run into any conflicts when you try and reuse those IP addresses.

    In your small network I'm guessing this will not be an issue but just for others that may come across this if you have apps that are hard coded to use DC1 or DC2 by name then change those....bad apps if those still exist.

    You don't have to wait a few weeks in step 5 but it is ok if you want to take your time.

    Good luck and nice job going to 2008 R2.


    LVL 10

    Expert Comment

    Your plan is looks like fine.

    Install one of my new Server 2008 R2 servers (with same IP as the old DC1) into the domain as a AD controller / DNS server called DC3
    If everything is went well gracefully then you are OK with the above step. In case of forcefully, you need to perform metadata cleanup to remove failed DC object from AD, DNS and AD SITE.

    Abhijit Waikar.

    Author Closing Comment


    Featured Post

    PRTG Network Monitor: Intuitive Network Monitoring

    Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

    Join & Write a Comment

    Suggested Solutions

    Title # Comments Views Activity
    RODC and LDAP 3 26
    Bios changes 5 23
    restrict users from ODBC useage 5 13
    Security Permissions Issues 10 26
    Mapping Drives using Group policy preferences Are you still using old scripts to map your network drives if so this article will show you how to get away for old scripts and move toward Group Policy Preference for mapping them. First things f…
    I had a question today where the user wanted to know how to delete an SSL Certificate, so I thought that I would quickly add this How to! Article for your reference. WHY WOULD YOU WANT TO DELETE A CERTIFICATE? 1. If an incorrect certificate was …
    This tutorial will give a an overview on how to deploy remote agents in Backup Exec 2012 to new servers. Click on the Backup Exec button in the upper left corner. From here, are global settings for the application such as connecting to a remote Back…
    This tutorial will walk an individual through configuring a drive on a Windows Server 2008 to perform shadow copies in order to quickly recover deleted files and folders. Click on Start and then select Computer to view the available drives on the se…

    733 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    24 Experts available now in Live!

    Get 1:1 Help Now