Solved

Is the first domain created in active directory always the Forest Root?

Posted on 2014-03-25
4
781 Views
Last Modified: 2014-04-08
When creating the first domain in active directory, it is set as the forest root.

Can a second domain created after the first be converted to now act as the forest root.

For example:

Domain 1: test.ad.example.com

Domain 2: ad.example.com
0
Comment
Question by:elchermans
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
4 Comments
 
LVL 57

Expert Comment

by:Mike Kline
ID: 39954988
No unfortunately  you can't  change the root
0
 
LVL 37

Accepted Solution

by:
Mahesh earned 500 total points
ID: 39955230
You cannot restructure forest root domain, its by design

However you can have tree root domain which will be having different name space in same forest

You can use the domain rename process to reposition any domain in the domain tree hierarchy of a forest, with the exception of the forest-root domain. Remember that although you can rename the forest root domain (you can change its DNS and NetBIOS names), you cannot reposition it in such a way that you designate a different domain to become the new forest root domain.

http://technet.microsoft.com/en-us/library/cc738208(WS.10).aspx

Mahesh.
0
 
LVL 8

Expert Comment

by:N-W
ID: 39955237
You can reposition any domain in the forest except for the forest root domain. Although you can't reposition the forest root domain, you can rename it.

So if you haven't already created "ad.example.com" (or you can delete it), you could rename your forest root domain to be "ad.example.com" and then create the child domain "test.ad.example.com".
0
 
LVL 37

Expert Comment

by:Mahesh
ID: 39955243
There are limiting factors as well you must be aware before proceeding domain rename

If you have Exchange 2007 \ 2010 deployed, you simply cannot rename domain

Domain rename is supported in a forest in which Exchange Server 2003 with Service Pack 1 (SP1) is deployed. However, domain rename is not supported in an Active Directory forest in which Exchange 2000 Server is deployed. When the domain rename tool detects this condition, it will not proceed with the domain rename process.

Also if you have any AD integrated applications where domain name is hardcoded (very rare case) , those applications will not work after rename

Mahesh.
0

Featured Post

PeopleSoft Has Never Been Easier

PeopleSoft Adoption Made Smooth & Simple!

On-The-Job Training Is made Intuitive & Easy With WalkMe's On-Screen Guidance Tool.  Claim Your Free WalkMe Account Now

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Active Directory security has been a hot topic of late, and for good reason. With 90% of the world’s organization using this system to manage access to all parts of their IT infrastructure, knowing how to protect against threats and keep vulnerabil…
Recently, Microsoft released a best-practice guide for securing Active Directory. It's a whopping 300+ pages long. Those of us tasked with securing our company’s databases and systems would, ideally, have time to devote to learning the ins and outs…
This tutorial will walk an individual through the process of configuring basic necessities in order to use the 2010 version of Data Protection Manager. These include storage, agents, and protection jobs. Launch Data Protection Manager from the deskt…
This tutorial will walk an individual through the process of installing the necessary services and then configuring a Windows Server 2012 system as an iSCSI target. To install the necessary roles, go to Server Manager, and select Add Roles and Featu…

726 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question