Jack5Back
asked on
domain questions
Hello Everyone,
We are running a windows active directory domain. We have a single domain in a single forest, pretty simple setup. Single site about 200 user accounts.
I have 3 domain controllers:
one is windows server 2003 standard
one is windows server 2008 standard (64bit)
the other is windows server 2008 standard (64bit).
All are global catalogs and the FSMO roles are held by the 2 windows server 2008 domain controllers. the domain is running at functional level 2000. The 2003 standard server is also a file server and one of the 2008 servers is also an exchange server.
I need to upgrade my active directory to 2008 to install a newer version of exchange. I will eventually move to 2008r2 or 2013 domains.
So, this is the plan:
1. first, we will demote the server 2003 domain controller.
2. Then we will raise the functional level to 2008.
3. Then we will promote a new domain controller, which will run 2008 r2.
4. Then we will migrate to exchange 2010.
5. Then we will add another 2008 r2 domain controller.
6. Then demote the 2 2008 domain controllers.
7. Then raise the functional level again.
(there would be at least one week, maybe multiple weeks between steps)
So, my question is... does this generally sound okay? Does this make sense? Any red flags?
One question I had is whether or not the 2 2008 machines are going to be okay running a functional level 200 domain without the 2003 domain controller.
Also, did Microsoft remove any features through the upgrades? Maybe some group policy options? We don't really do anything special. Some login scripts, basic user account access. Some terminal services options. We publish an exchange certificate, network drives, and some screensaver options through active directory.
Anyway, any input or feedback would be very helpful.
Thanks,
Ben
We are running a windows active directory domain. We have a single domain in a single forest, pretty simple setup. Single site about 200 user accounts.
I have 3 domain controllers:
one is windows server 2003 standard
one is windows server 2008 standard (64bit)
the other is windows server 2008 standard (64bit).
All are global catalogs and the FSMO roles are held by the 2 windows server 2008 domain controllers. the domain is running at functional level 2000. The 2003 standard server is also a file server and one of the 2008 servers is also an exchange server.
I need to upgrade my active directory to 2008 to install a newer version of exchange. I will eventually move to 2008r2 or 2013 domains.
So, this is the plan:
1. first, we will demote the server 2003 domain controller.
2. Then we will raise the functional level to 2008.
3. Then we will promote a new domain controller, which will run 2008 r2.
4. Then we will migrate to exchange 2010.
5. Then we will add another 2008 r2 domain controller.
6. Then demote the 2 2008 domain controllers.
7. Then raise the functional level again.
(there would be at least one week, maybe multiple weeks between steps)
So, my question is... does this generally sound okay? Does this make sense? Any red flags?
One question I had is whether or not the 2 2008 machines are going to be okay running a functional level 200 domain without the 2003 domain controller.
Also, did Microsoft remove any features through the upgrades? Maybe some group policy options? We don't really do anything special. Some login scripts, basic user account access. Some terminal services options. We publish an exchange certificate, network drives, and some screensaver options through active directory.
Anyway, any input or feedback would be very helpful.
Thanks,
Ben
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
I do not see a reason not to raise the FFL and DFL to 2008 if you never plan to install a 2003 DC again.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thanks Everyone.
Kevinhsieh,
I appreciate what you are saying. Essentially, my environment spans so many different versions of exchange and active directory already. Getting the domain to 2008r2 and exchange to 2010 would be such a huge step forward for us. I am also migrating away from Essential Business Server, so I am wary of any potential problems that is going throw in.
I believe that once I am on 2008r2 and exchange 2010, moving forward from their is going to be a much more manageable process for us. I don't planning on stopping at 2008r2 & exchange 2010, that's just the next attainable goal. So, I am just taking it "one step at a time".
I've been told that exchange 2013 is dramatically different from 2007 & 2010, so I don't want to underestimate that step. And, because I don't see anything in 2013 that is particularly valuable to my organization, I am in no hurry to get their.
Kevinhsieh,
I appreciate what you are saying. Essentially, my environment spans so many different versions of exchange and active directory already. Getting the domain to 2008r2 and exchange to 2010 would be such a huge step forward for us. I am also migrating away from Essential Business Server, so I am wary of any potential problems that is going throw in.
I believe that once I am on 2008r2 and exchange 2010, moving forward from their is going to be a much more manageable process for us. I don't planning on stopping at 2008r2 & exchange 2010, that's just the next attainable goal. So, I am just taking it "one step at a time".
I've been told that exchange 2013 is dramatically different from 2007 & 2010, so I don't want to underestimate that step. And, because I don't see anything in 2013 that is particularly valuable to my organization, I am in no hurry to get their.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Others pointed out that raise in level adds features, group policy preferences, DFS-r