Solved

Windows Server 2012 R2 domain-forest functional level

Posted on 2014-02-19
1
1,299 Views
Last Modified: 2014-02-20
we are migrating our AD forest. now,we have only server 2008 and 2012 R2 DCs,but we do have 2000 and 2003 member servers. can we still upgrade to 2008 R2 domain-forest functional level first as a first step? once we have all 2012 R2 DCs,we will then upgrade there too.
what are the (security) benefits by running on 2012 R2 domain-forest functional level?
0
Comment
Question by:DukewillNukem
1 Comment
 
LVL 57

Accepted Solution

by:
Mike Kline earned 500 total points
ID: 39870783
Yes you can still have 2003 member servers, Windows 2000 is no long officially supported so test that first.

You will get features like dynamica access control and there are some pass the hash mitigations in 2012 R2.  I'll send out a presentation on that later.

Thanks

Mike
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

In this article, we will see the basic design consideration while designing a Multi-tenant web application in a simple manner. Though, many frameworks are available in the market to develop a multi - tenant application, but do they provide data, cod…
Disabling the Directory Sync Service Account in Office 365 will stop directory synchronization from working.
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …

912 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

16 Experts available now in Live!

Get 1:1 Help Now