[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now


Demoting 2003 DC, DNS, WINS, DHCP and File Server

Posted on 2012-09-12
Medium Priority
Last Modified: 2012-09-12
I have a legacy 2003 server that is configured as a DC, DNS, WINS and DHCP server, as well as a file server.  

I have stood up 2008 domain controllers with AD-integrated DNS and DHCP services locally, and WINS will be provided centrally.  I should be able to remove WINS and DHCP services from this server as a result.

Here's the big question.  I want to demote the legacy 2003 domain controller and leave it running as a file server.  Has anyone heard of issues like NTFS permissions getting scrambled as a result?  Any issues at all?

Can I complete the DC demotion cleanly while retaining the file server role?

Thanks for your help!
Question by:brodeck
  • 4
  • 2
LVL 18

Accepted Solution

Sarang Tinguria earned 1600 total points
ID: 38392214
Make sure you have checked below things
1) Roles transferred to new DC
2) New dc is global catalogue
3) replication is perfect between both the DC's
4) Clients are pointing to new DNS server in there NIC card
5) New DHCP server is authorised in Domain
6) Health of new dc using dcdiag /q and health of new DNS using dcdiag /test:dns

Refer below too if I missed something
Decommission a DC - http://www.pbbergs.com/windows/articles/DecommissionDC.html
LVL 18

Expert Comment

by:Sarang Tinguria
ID: 38392219
Can I complete the DC demotion cleanly while retaining the file server role > Yes

Assisted Solution

gbarrientos earned 400 total points
ID: 38392236
NTFS permissions will not be affected. Just make sure you that you change DNS settings to point to the other DNS servers if you are removing the DNS role.
Transaction-level recovery for Oracle database

Veeam Explore for Oracle delivers low RTOs and RPOs with agentless transaction log backup and transaction-level recovery of Oracle databases. You can restore the database to a precise point in time, even to a specific transaction.


Expert Comment

ID: 38392247
AD roles will automatically be transferred to other DC's if they haven't already when you brought up the newer DC. As a precaution you can transfer them manually if you would like but DC demotion wont even complete if role transfer is not successful.
LVL 18

Expert Comment

by:Sarang Tinguria
ID: 38392258
@ gbarrientos :- I have already highlihted both things above in my first post

Author Comment

ID: 38393120
Thanks everyone for your assistance!
LVL 18

Expert Comment

by:Sarang Tinguria
ID: 38393132
You are most welcome

Featured Post

Creating Active Directory Users from a Text File

If your organization has a need to mass-create AD user accounts, watch this video to see how its done without the need for scripting or other unnecessary complexities.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

After seeing many questions for JRNL_WRAP_ERROR for replication failure, I thought it would be useful to write this article.
In the absence of a fully-fledged GPO Management product like AGPM, the script in this article will provide you with a simple way to watch the domain (or a select OU) for GPOs changes and automatically take backups when policies are added, removed o…
This tutorial will walk an individual through configuring a drive on a Windows Server 2008 to perform shadow copies in order to quickly recover deleted files and folders. Click on Start and then select Computer to view the available drives on the se…
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
Suggested Courses

872 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question