Mixed Server Domain
I am making preparations to upgrade our primary domain controller to Windows Server 2008 R2 and am finding that I have questions that I can't seem to find answers to.
If I upgrade my PDC to Server 2008 R2 and have 3 other Server 2003 machines as BDCs, can the 3 Server 2003 machines be used to support a full featured Windows 7 Workstation environment with Roaming Profiles?
Keeping in mind that hose Server 2003 Servers will eventually be phased out in favor of Server 2008 R2 machines, are there any disadvantages that are great enough that I would be better off to upgrade the operating systems on all servers now?
When it comes to Active Directory, I have never set up a mixed Domain like that before. I suppose I would like to discuss what the disadvantages of the Mixed Server Domain are, compared to making a full switch to a pure Server 2008 SR2 Domain...
If I upgrade my PDC to Server 2008 R2 and have 3 other Server 2003 machines as BDCs, can the 3 Server 2003 machines be used to support a full featured Windows 7 Workstation environment with Roaming Profiles?
Keeping in mind that hose Server 2003 Servers will eventually be phased out in favor of Server 2008 R2 machines, are there any disadvantages that are great enough that I would be better off to upgrade the operating systems on all servers now?
When it comes to Active Directory, I have never set up a mixed Domain like that before. I suppose I would like to discuss what the disadvantages of the Mixed Server Domain are, compared to making a full switch to a pure Server 2008 SR2 Domain...
Who is Participating?
Experts Exchange Solution brought to you by
Enjoy your complimentary solution view.
Get every solution instantly with Premium.
Start your 7-day free trial.
I wear a lot of hats...
"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.
So eventually, once all of the Server 2003 Domain Controllers are gone, I can then upgrade Active Directory and gain full benefits of Server 2008?
I'm also running multiple other servers (Exchange 2010, Microsoft TMG, MS SQL, etc...). Can you think of anything I should research regarding those other servers that will help the transition go smooth?
Does it matter if the Server 2008 Domain Controller is 64-bit, while the Server 2003 Domain Controllers are only 32-bit?
I'm also running multiple other servers (Exchange 2010, Microsoft TMG, MS SQL, etc...). Can you think of anything I should research regarding those other servers that will help the transition go smooth?
Does it matter if the Server 2008 Domain Controller is 64-bit, while the Server 2003 Domain Controllers are only 32-bit?
32bit verses 64 bit does not matter & yes once the 2003 DCs are gone, you can take full advantage of the Win 2008 DC featrures such as read only DCs, etc. When a Win 2008 DC is introduced to an AD forest the environment will funtion at the lowest level, meaning if a Win 2003 DC is on there, you will have those features. As far as making other things run smooth, All looks fine except I have heard others having issues when messing around with Exchange 2010 but I have no experience in that area, or not enough to feel comfortable giving advice on. Hope this helps.
You cannot take full advantage of win2008 DC in mixed environment.For example if you want to deploy different Password policy you cannot do the same in mixed environment,but if all the DC 2008 you can.
There are a couple of very important considerations, that you should have in mind, before you proceed with your migration scenario.
--Check, and raise, if necessary, the Domain and Forest functional levels. You cannot upgrade directly from Windows 2000 mixed, or Windows Server 2003 interim domain functional levels.
--The first Windows Server 2008 Domain Controller in the forest must be a Global Catalog Server, and it cannot be a Read Only Domain Controller, RODC.
--Check the FSMO roles assignments. When you prepare the existing AD, you should run adprep /forestprep on the Schema operations master, and adprep /domainprep /gpprep on the infrastructure master.In your case as there is a single Dc you need to run on the same server.
The installation of Windows 2008 into the domain and migration is quite simple.
First you need to Adprep your 2003 Domain by running
adprep /forestprep and
adprep /domainprep and
adprep /gpprep
from the 2008 DVD on the Windows 2000 DC - adprep is in the SOURCES folder on the DVD.
Next install 2008 server on the new machine. You need to assign the 2008 new computer an IP address and subnet mask on the existing network. Make sure that the preferred DNS server on new machine points to the existing DNS Server on the Domain (normally the existing domain controller)
Join the new 2008 machine to the existing domain as a member server
From the command line promote the new machine to a domain controller with the DCPROMO command from the command line Select "Additional Domain Controller in an existing Domain"
Once Active Directory is installed then to make the new machine a global catalog server, go to Administrative Tools, Active Directory Sites and Services, Expand, Sites, Default first site and Servers. Right click on the new server and select properties and tick the"Global Catalog" checkbox. (Global catalog is essential for logon as it needs to be queried to establish Universal Group Membership)
If necessary install DNS on the new server. Assuming that you were using Active Directory Integrated DNS on the first Domain Controller, DNS will automatically replicate to the new domain controller along with Active Directory. Set up forwarders as detailed at http://www.petri.co.il/configure_dns_forwarding.htm
You must transfer the FSMO roles to the 2008 machine then the process is as outlined at http://www.petri.co.il/transferring_fsmo_roles.htm
Change all of the clients (and the new 2008 DC itself), to point to the 2008 DC for their preferred DNS server this may be in DHCP options or the TCP/IP settings.
You can then transfer any data to the new server
Before removing the old DC from the domain, run DCPROMO on it to remove Active Directory.
Reference article:
http://araihan.wordpress.com/2009/08/25/migrate-from-windows-2003-active-directory-to-windows-2008-active-directory-step-by-step/
http://markswinkels.nl/2009/01/08/how-to-migrate-a-domain-controller-from-windows-2003-to-windows-2008/
There are a couple of very important considerations, that you should have in mind, before you proceed with your migration scenario.
--Check, and raise, if necessary, the Domain and Forest functional levels. You cannot upgrade directly from Windows 2000 mixed, or Windows Server 2003 interim domain functional levels.
--The first Windows Server 2008 Domain Controller in the forest must be a Global Catalog Server, and it cannot be a Read Only Domain Controller, RODC.
--Check the FSMO roles assignments. When you prepare the existing AD, you should run adprep /forestprep on the Schema operations master, and adprep /domainprep /gpprep on the infrastructure master.In your case as there is a single Dc you need to run on the same server.
The installation of Windows 2008 into the domain and migration is quite simple.
First you need to Adprep your 2003 Domain by running
adprep /forestprep and
adprep /domainprep and
adprep /gpprep
from the 2008 DVD on the Windows 2000 DC - adprep is in the SOURCES folder on the DVD.
Next install 2008 server on the new machine. You need to assign the 2008 new computer an IP address and subnet mask on the existing network. Make sure that the preferred DNS server on new machine points to the existing DNS Server on the Domain (normally the existing domain controller)
Join the new 2008 machine to the existing domain as a member server
From the command line promote the new machine to a domain controller with the DCPROMO command from the command line Select "Additional Domain Controller in an existing Domain"
Once Active Directory is installed then to make the new machine a global catalog server, go to Administrative Tools, Active Directory Sites and Services, Expand, Sites, Default first site and Servers. Right click on the new server and select properties and tick the"Global Catalog" checkbox. (Global catalog is essential for logon as it needs to be queried to establish Universal Group Membership)
If necessary install DNS on the new server. Assuming that you were using Active Directory Integrated DNS on the first Domain Controller, DNS will automatically replicate to the new domain controller along with Active Directory. Set up forwarders as detailed at http://www.petri.co.il/configure_dns_forwarding.htm
You must transfer the FSMO roles to the 2008 machine then the process is as outlined at http://www.petri.co.il/transferring_fsmo_roles.htm
Change all of the clients (and the new 2008 DC itself), to point to the 2008 DC for their preferred DNS server this may be in DHCP options or the TCP/IP settings.
You can then transfer any data to the new server
Before removing the old DC from the domain, run DCPROMO on it to remove Active Directory.
Reference article:
http://araihan.wordpress.com/2009/08/25/migrate-from-windows-2003-active-directory-to-windows-2008-active-directory-step-by-step/
http://markswinkels.nl/2009/01/08/how-to-migrate-a-domain-controller-from-windows-2003-to-windows-2008/
Experts Exchange Solution brought to you by
Your issues matter to us.
Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.
Start your 7-day free trialIt's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Windows Server 2008
From novice to tech pro — start learning today.
-
Microsoft ApplicationsCertification: MCSE Microsoft Certified Systems Engineer - Identity … 440 lessons
-
Microsoft ApplicationsCertification: MOS Microsoft Office Specialist - Outlook 2013 Par… 191 lessons
Experts Exchange Solution brought to you by
Enjoy your complimentary solution view.
Get every solution instantly with Premium.
Start your 7-day free trial.
http://www.petri.co.il/forums/showthread.php?t=30995
You must also know/transfer your FSMO roles accordingly:
http://www.petri.co.il/transferring_fsmo_roles.htm