We are running a windows active directory domain. We have a single domain in a single forest, pretty simple setup. Single site about 200 user accounts.
I have 3 domain controllers:
one is windows server 2003 standard
one is windows server 2008 standard (64bit)
the other is windows server 2008 standard (64bit).
All are global catalogs and the FSMO roles are held by the 2 windows server 2008 domain controllers. the domain is running at functional level 2000. The 2003 standard server is also a file server and one of the 2008 servers is also an exchange server.
I need to upgrade my active directory to 2008 to install a newer version of exchange. I will eventually move to 2008r2 or 2013 domains.
So, this is the plan:
1. first, we will demote the server 2003 domain controller.
2. Then we will raise the functional level to 2008.
3. Then we will promote a new domain controller, which will run 2008 r2.
4. Then we will migrate to exchange 2010.
5. Then we will add another 2008 r2 domain controller.
6. Then demote the 2 2008 domain controllers.
7. Then raise the functional level again.
(there would be at least one week, maybe multiple weeks between steps)
So, my question is... does this generally sound okay? Does this make sense? Any red flags?
One question I had is whether or not the 2 2008 machines are going to be okay running a functional level 200 domain without the 2003 domain controller.
Also, did Microsoft remove any features through the upgrades? Maybe some group policy options? We don't really do anything special. Some login scripts, basic user account access. Some terminal services options. We publish an exchange certificate, network drives, and some screensaver options through active directory.
Anyway, any input or feedback would be very helpful.