AD Migration policies not moving - 2003 to 2008 R2

Posted on 2012-08-23
Last Modified: 2015-06-23
I am migrating to new Domain Controllers.  The old controller was called SAA-2007 and is a Windows 2003 Servers.  The new servers are called DC1 and DC2.

I have been able to change the FSMO roles to DC1 but the domain is till looking to the old server for the policy files.  I know this becasue if I shut down the server I can no longer edit the policy files.

I've pickted up that the domain controller stores the policy files in \\<servername>\SYSVOL\<domainname>.  I can find this on the old server but not on DC1 or DC2.

I need to get the policyes onto the new servers so I can shut down the old one.
Question by:edawlem
    LVL 57

    Expert Comment

    by:Mike Kline
    have you verified that replication is working between the two servers, is  sysvol being shared out on the new DC?

    What errors are you seeing in your logs?



    Accepted Solution

    I think I found the source of the problem.  The original DC only had external DNS servers listed (I just inherited this system).  I've fixed that and moved the operations master roles back to the original DC.

    SYSVOL is not being shared from the new domain controllers.

    I get this error:

    Event Type:	Information
    Event Source:	NTDS Replication
    Event Category:	Replication 
    Event ID:	1955
    Date:		8/23/2012
    Time:		8:51:20 PM
    Computer:	SAA-2007
    Active Directory encountered a write conflict when applying replicated changes to the following object. 
    Time in seconds: 
    Event log entries preceding this entry will indicate whether or not the update was accepted. 
    A write conflict can be caused by simultaneous changes to the same object or simultaneous changes to other objects that have attributes referencing this object. This commonly occurs when the object represents a large group with many members, and the functional level of the forest is set to Windows 2000. This conflict triggered additional retries of the update. If the system appears slow, it could be because replication of these changes is occurring. 
    User Action 
    Use smaller groups for this operation or raise the functional level to Windows Server 2003.
    For more information, see Help and Support Center at

    Open in new window


    Author Comment

    Event Type:	Warning
    Event Source:	MSDTC
    Event Category:	SVC
    Event ID:	53258
    Date:		8/23/2012
    Time:		9:13:04 PM
    User:		N/A
    Computer:	SAA-2007
    MS DTC could not correctly process a DC Promotion/Demotion event. MS DTC will continue to function and will use the existing security settings. Error Specifics: %1
    For more information, see Help and Support Center at

    Open in new window

    LVL 34

    Expert Comment

    by:Seth Simmons
    This question has been classified as abandoned and is closed as part of the Cleanup Program. See the recommendation for more details.

    Featured Post

    Better Security Awareness With Threat Intelligence

    See how one of the leading financial services organizations uses Recorded Future as part of a holistic threat intelligence program to promote security awareness and proactively and efficiently identify threats.

    Join & Write a Comment

    Suggested Solutions

    Redirected folders in a windows domain can be quite useful for a number of reasons, one of them being that with redirected application data, you can give users more seamless experience when logging into different workstations.  For example, if a use…
    Know what services you can and cannot, should and should not combine on your server.
    This tutorial will give a short introduction and overview of Backup Exec 2012 and how to navigate and perform basic functions. Click on the Backup Exec button in the upper left corner. From here, are global settings for the application such as conne…
    This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…

    734 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    23 Experts available now in Live!

    Get 1:1 Help Now