[Last Call] Learn how to a build a cloud-first strategyRegister Now

  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 4204
  • Last Modified:

Upgrading Domain Controllers from 2008r2 to 2012r2

I would like to upgrade my two 2008 R2 Domain Controllers to 2012 R2, and I would like to know any special steps or considerations I should take.

Environment Specifics
•      There are two DC’s, both running 2008 R2
•      My Domain and Forest functional level are 2008 R2
•      Both servers are GC and DNS servers
•      One of them has all the FSMO roles
o      It also is our sole DHCP server
o      It also is our only NTP server
•      I don’t do anything with Certificate Services or WSUS

Specific Questions
•      Should I go through 2012 first?
•      Should I upgrade the one that doesn’t have the FSMO roles first?
•      What kind of downtime should I plan for?

Thank you in advance,

  • 2
4 Solutions
To perform an in-place upgrade of a computer that has the AD DS role installed, you must first use the command-line commands Adprep.exe /forestprep and Adprep.exe /domainprep to prepare the forest and domain. An in-place operating system upgrade does not perform automatic schema and domain preparation.
Adprep.exe is included on the installation media in the \Support\Adprep folder. There are no additional configuration steps after that point, and you can continue to run the Windows Server 2012R2 operating system upgrade.

To upgrade the operating system of a Windows Server 2008R2 domain controller to Windows Server 2012R2, perform the following steps:
1. Insert the installation disk for Windows Server 2012R2, and then run Setup.
2. After the language selection page, click Install now.
3. After the operating system selection window and the license acceptance page, in the Which type of installation do you want? window, click Upgrade: Install Windows and keep files, settings, and apps.

Note: With this type of upgrade, there is no need to preserve users’ settings and reinstall
applications; everything is upgraded in place. Remember to check for hardware and software compatibility before performing an upgrade.
You can go directly to 2012 R2 active directory, 2012 server is not required.

Only You need to ensure that account used for upgrading schema is having schema admins and domain admins group membership

You can upgrade AD schema from 2008 R2 member server as well provided that you have installed ADDS tools on that and you can reach to domain controller having schema master role over network

There is no downtime required for this activity
Once your ADC is deployed, you can transfer roles and change appropriate DNS on clients \ servers and can then easily demote Dc without downtime

Will SzymkowskiSenior Solution ArchitectCommented:
As stated you can in fact do an in-place upgrade from 2008R2 to 2012R2. I would also beware that when you are doing this you will need be required to have new CALS for all of the users you have authenticating. This can be a huge cost if you have a significate amount of users. So althought the upgrade path is fairly strightforward make sure that you have the proper licensing in place to accomidate this upgrade.

Take a look at the below link for more info...

its always recommended to have schema upgraded 1st, then have a 2012 R2 member server  promoted to 2012 R2 domain controller unless you lack of server hardware.
This is the safest way to upgrade.


Featured Post

Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell® is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now