Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 156
  • Last Modified:

active directory on windows server 2008 for self learning

32 bit
windows server standard without hyper-v
service pack 2
copywrite 2007
4g ram


I am installing active directory just to learn a tutorial (which has one chapter about active directory but not used in later chapters: so not needed)
There is not a need to make changes
godaddy (rdp login) webserver just hosts a website that does not need changes

Looking at the hours of installation and seeing many words
I noticed that many services are being created and enabled
Will this slow down the websites

Is this process undo able

I am prompted for a restart
Could this creation of a test forest with test forest user disable iis7
0
rgb192
Asked:
rgb192
  • 12
  • 6
  • 4
  • +2
9 Solutions
 
David Johnson, CD, MVPOwnerCommented:
Will this slow down the websites
NO
Is this process undo able
yes
I am prompted for a restart
Could this creation of a test forest with test forest user disable iis7

No

Please Explain this: godaddy (rdp login) webserver just hosts a website that does not need changes
0
 
rgb192Author Commented:
Please Explain this: godaddy (rdp login) webserver just hosts a website that does not need changes
Client has 3 websites using iis and sql server paid monthly hosting through godaddy.com

client is not looking for active directory
But I need to learn windows server through a tutorial or every task takes hours.
0
 
David Johnson, CD, MVPOwnerCommented:
Then they will not be affected at all by local changes.
0
Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 
rgb192Author Commented:
But only access to 1 dedicated server is logging into rdp.

Then they will not be affected at all by local changes.
There is no local (and non local) server. Just one server.
0
 
David Johnson, CD, MVPOwnerCommented:
then on your home computer download any one of the 180 day trial versions of Windows Server and run it on a virtual machine i.e. virtual box, vmware player, or hyper-v or run through the labs @ http://www.microsoft.com/en-us/evalcenter/
0
 
rgb192Author Commented:
how can I undo before I restart.
Because I fear if I restart, I will be locked out.
0
 
rgb192Author Commented:
how can i be sure I will not get locked out after restart.
0
 
David Johnson, CD, MVPOwnerCommented:
DONT install it on your godaddy server.  Install it on your home computer using any one of the virtual machine platforms I suggested.
0
 
rgb192Author Commented:
DONT install it on your godaddy server.  Install it on your home computer using any one of the virtual machine platforms I suggested.
I already installed.
So I would like to know if I can undo this install without restarting. Because after a restart; I fear I will be locked out.
0
 
rgb192Author Commented:
Since I already installed, what should I do?
0
 
rgb192Author Commented:
I am scared because I installed an unnecessary program (active directory) on a clients production server and I have been waiting a month to restart because I fear that I will not be able to log on again.
0
 
Chris DentPowerShell DeveloperCommented:
Do you have any means of restoring the server to it's original state? What penalties will you incur if your clients site is not available?

I very strongly disagree with David's statement:

> Then they will not be affected at all by local changes.

We have absolutely no way of knowing whether or not they will be affected without seeing and understanding the web application deployment.

You're going to have to incur some downtime to fix it. I strongly suggest you ensure you know exactly how to recover the environment before you try and undo this.

Chris
0
 
David Johnson, CD, MVPOwnerCommented:
The websites will not be affected by local changes as the computer name doesn't change . from non-domain to domain or the reverse to undo the changes. You did break a major tenet of the industry by making changes to a customers machine without their explicit permission.   Did you also run dcpromo to promote the machine to a domain controller? If not removing the dc role is trivial.
If you did then you have to run dcpromo and remove the domain controller role and you will have to enter a password for the administrator account. You can then remove the software components of the domain controller.

Please note that you did not say it was on a computer not owned by you or that it was a customers machine.. and I did tell you to NOT do it on a production and suggested that you run it on your own computer using one of the trial's available from Microsoft.

In the future never ever (I can't emphasize it strongly enough) do anything on a customers machine without their explicit permission especially if you don't know the complete ramifications of your actions.
0
 
Chris DentPowerShell DeveloperCommented:
Local user accounts are converted to domain accounts, changes to the security sub-system may affect a web application depending on the configuration of the web application.

This is very much "may" not "will", I simply disagree with the opposite definitive assertion unless you happen to know the gory detail of the web application :)

Chris
0
 
rgb192Author Commented:
How to run Dc promo.   If there is downtime that is bad. It would take me days reimaging server and copypasting files from ftp to get server to same state it is now.
0
 
Chris DentPowerShell DeveloperCommented:
Can you build a server in parallel and replace it once the new one is ready?

Chris
0
 
kevinhsiehCommented:
Ouch. I recommend building a new server and moving all of the web sites to it. You can call it an upgrade and you should move to a newer version of Windows and IIS, as Windows 2008 is pretty old now (think Windows Vista). There are many changes that get made when promoting to a domain controller, and it sounds like you don't have good access to the server or to backups previous to running Dcpromo. I feel that any other option is highly risky and could involve significant down time.
0
 
ZENandEmailguyCommented:
It doesn't sound like he ran dcpromo, just installed the AD role.  A reboot will be necessary before he can remove that role from the server but until he runs dcpromo, local accounts are not modified.  Even though it is dangerous to assume, I am assuming since he is asking about the administrator password and being locked out that again he didn't run dcpromo because he would have been prompted to enter/re-enter a new administrator password.

Make sure you've got two full backups that you can actually restore from, reboot, remove the AD role, reboot again to restore the server back to its original.
0
 
rgb192Author Commented:
Can you build a server in parallel and replace it once the new one is ready?
No.
sounds like you don't have good access to the server or to backups previous to running Dcpromo
I never ran dc promo.


Client will not pay me to spend 2 entire days moving files from ftp and configuring domain names for a server that I caused an error.
Only solution is hope server does not restart because I may not be able to log in as administrator.

Should I create many users and hope one can log in?
0
 
kevinhsiehCommented:
Without creating a domain, I don't understand why the server is asking for a restart. That said, a restart sounds very risky in this situation. If I was the client, I wouldn't pay you to fix something that you broke because you were using a production platform for personal learning. Fundamentally, you created this situation, so how do you plan on getting out? If it breaks on a reboot you say that it will take you up to two days to recover. That is two days of downtime, and I would be very unhappy as a customer. If it takes you two days to set them up on a new server, and least your customers should have very minimal downtime, and and might be able to bill them for upgrading to a modern platform.

You can create another user and make it a member of Administrators, but are you willing to risk rebooting in the first place?
0
 
David Johnson, CD, MVPOwnerCommented:
perhaps you should follow my original instruction.. grab one of the 180 day trials, install it on your own pc, recreate what you've done and then your plan to undo what you've done and practice on your own computer.

http://www.microsoft.com/en-us/evalcenter/
0
 
rgb192Author Commented:
bill them for upgrading to a modern platform.
I already sent the message because it will takes days to convince client of downtime or move


You can create another user and make it a member of Administrators, but are you willing to risk rebooting in the first place?
If accidentally reboot
I have another user but there are files on startup folder that boot when I log on as user 'j3'

C:\Users\j3\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup

recreating this folder is alot easier than reimaging server
so this is a related question:
http://www.experts-exchange.com/OS/Microsoft_Operating_Systems/Server/Windows_Server_2008/Q_28547341.html

SqlServer 2005 seems to work with 2 logins.
I think it uses windows authentication.
so this is a related question:
http://www.experts-exchange.com/OS/Microsoft_Operating_Systems/Server/Windows_Server_2008/Q_28547348.html
0
 
Chris DentPowerShell DeveloperCommented:
> Only solution is hope server does not restart because I may not be able to log in as administrator.

That's no solution at all. David has made a good suggestion and I'll add a recommendation that you follow it. Alternatively you could come clean and bear the cost of fixing it (I doubt you'll like that option, but it exists).

Failing to fully address the problem you've caused, regardless of severity, could cost you the client or your job depending on the nature of your business. It's not a position any of us will advise you put yourself in.

Chris
0
 
rgb192Author Commented:
I will try
180 day trial versions of Windows Server
and then post back
0
 
rgb192Author Commented:
I will try
180 day trial versions of Windows Server
and then write another question. My expertise is too low to finish this question. Thanks for guidance.
0

Featured Post

How to Use the Help Bell

Need to boost the visibility of your question for solutions? Use the Experts Exchange Help Bell to confirm priority levels and contact subject-matter experts for question attention.  Check out this how-to article for more information.

  • 12
  • 6
  • 4
  • +2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now