Solved

Is the first domain created in active directory always the Forest Root?

Posted on 2014-03-25
4
774 Views
Last Modified: 2014-04-08
When creating the first domain in active directory, it is set as the forest root.

Can a second domain created after the first be converted to now act as the forest root.

For example:

Domain 1: test.ad.example.com

Domain 2: ad.example.com
0
Comment
Question by:elchermans
  • 2
4 Comments
 
LVL 57

Expert Comment

by:Mike Kline
ID: 39954988
No unfortunately  you can't  change the root
0
 
LVL 36

Accepted Solution

by:
Mahesh earned 500 total points
ID: 39955230
You cannot restructure forest root domain, its by design

However you can have tree root domain which will be having different name space in same forest

You can use the domain rename process to reposition any domain in the domain tree hierarchy of a forest, with the exception of the forest-root domain. Remember that although you can rename the forest root domain (you can change its DNS and NetBIOS names), you cannot reposition it in such a way that you designate a different domain to become the new forest root domain.

http://technet.microsoft.com/en-us/library/cc738208(WS.10).aspx

Mahesh.
0
 
LVL 8

Expert Comment

by:N-W
ID: 39955237
You can reposition any domain in the forest except for the forest root domain. Although you can't reposition the forest root domain, you can rename it.

So if you haven't already created "ad.example.com" (or you can delete it), you could rename your forest root domain to be "ad.example.com" and then create the child domain "test.ad.example.com".
0
 
LVL 36

Expert Comment

by:Mahesh
ID: 39955243
There are limiting factors as well you must be aware before proceeding domain rename

If you have Exchange 2007 \ 2010 deployed, you simply cannot rename domain

Domain rename is supported in a forest in which Exchange Server 2003 with Service Pack 1 (SP1) is deployed. However, domain rename is not supported in an Active Directory forest in which Exchange 2000 Server is deployed. When the domain rename tool detects this condition, it will not proceed with the domain rename process.

Also if you have any AD integrated applications where domain name is hardcoded (very rare case) , those applications will not work after rename

Mahesh.
0

Featured Post

VMware Disaster Recovery and Data Protection

In this expert guide, you’ll learn about the components of a Modern Data Center. You will use cases for the value-added capabilities of Veeam®, including combining backup and replication for VMware disaster recovery and using replication for data center migration.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Disabling the Directory Sync Service Account in Office 365 will stop directory synchronization from working.
Last week, our Skyport webinar on “How to secure your Active Directory” (https://www.experts-exchange.com/videos/5810/Webinar-Is-Your-Active-Directory-as-Secure-as-You-Think.html?cid=Gene_Skyport) provided 218 attendees with a step-by-step guide for…
This tutorial will give a short introduction and overview of Backup Exec 2012 and how to navigate and perform basic functions. Click on the Backup Exec button in the upper left corner. From here, are global settings for the application such as conne…
This tutorial will walk an individual through the steps necessary to enable the VMware\Hyper-V licensed feature of Backup Exec 2012. In addition, how to add a VMware server and configure a backup job. The first step is to acquire the necessary licen…

825 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question