Learn how to a build a cloud-first strategyRegister Now

x
?
Solved

Demoting Server 2003 DC

Posted on 2013-05-10
5
Medium Priority
?
433 Views
Last Modified: 2013-05-10
Hi,

Just wanted to get some clarification on if I am doing this right.

Server-01 is a Server 2003 R2 DC with Certificate Authority and is the Schema master

I want the server to be just a member server, with the CA on it.

My thoughts where:

1) transfer Schema to other DC/GC
2) Backup CA
3) Uninstall CA
4) Run DCpromo and demote to member server
5) Install CA back on to server-01 and restore from backup

Can you see any flaws in my plan?

Many thanks

Brian
0
Comment
Question by:brian2204
  • 3
  • 2
5 Comments
 
LVL 57

Expert Comment

by:Mike Kline
ID: 39155693
Looks good, is the box also a DNS server or hold any other roles/functions?

Thanks

Mike
0
 

Author Comment

by:brian2204
ID: 39155711
Yes it has DNS integrated into AD. This was the first DC for the forest, quite a few years ago, I have transferred the other FMOS roles over to the Server 2008 R2 DC now.

Thanks

Brian
0
 
LVL 57

Accepted Solution

by:
Mike Kline earned 2000 total points
ID: 39155737
ok just make sure any clients (DHCP/Static) pointing to it for DNS point to the new server.

Thanks

Mike
0
 

Author Comment

by:brian2204
ID: 39155749
ok thanks for your advice!

Brian
0
 
LVL 57

Expert Comment

by:Mike Kline
ID: 39155767
No problem and nice job getting to 2008 R2 on all your DCs.

Thanks


Mike
0

Featured Post

Free Tool: ZipGrep

ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.

One of a set of tools we're offering as a way to say thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

After seeing many questions for JRNL_WRAP_ERROR for replication failure, I thought it would be useful to write this article.
Compliance and data security require steps be taken to prevent unauthorized users from copying data.  Here's one method to prevent data theft via USB drives (and writable optical media).
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …
Suggested Courses

810 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question