• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1376
  • Last Modified:

Windows Server 2012 R2 domain-forest functional level

we are migrating our AD forest. now,we have only server 2008 and 2012 R2 DCs,but we do have 2000 and 2003 member servers. can we still upgrade to 2008 R2 domain-forest functional level first as a first step? once we have all 2012 R2 DCs,we will then upgrade there too.
what are the (security) benefits by running on 2012 R2 domain-forest functional level?
0
DukewillNukem
Asked:
DukewillNukem
1 Solution
 
Mike KlineCommented:
Yes you can still have 2003 member servers, Windows 2000 is no long officially supported so test that first.

You will get features like dynamica access control and there are some pass the hash mitigations in 2012 R2.  I'll send out a presentation on that later.

Thanks

Mike
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Cloud Class® Course: C++ 11 Fundamentals

This course will introduce you to C++ 11 and teach you about syntax fundamentals.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now