Solved

Need Help on adding Active Directory server in DR data center

Posted on 2014-09-03
7
265 Views
Last Modified: 2014-09-08
We have Data Center in Office and DR in Remote Location. We have dedicated AD servers globally in different sites. We are working on moving one of our data center to new location. We will move all our servers to new data center and to perform same we need to shutdown the AD server too for 10 hours. So far we don't have a DR server for active directory in our current location. I am planning to deploy a new AD server in DR location to fail over the domain controller requests for 10 hours until the current server comes up. Need help to setup new AD server in our environment.

- Plan to add new AD server in DR location
- Steps to configure the AD server in DR location
- Pre & Post steps to deploy the AD server
- Post Verification steps \ Replication Verification
- Possibilities of issues when we add new server in DR
- DR exercise (How can I validate the new server is accepting the AD requests when my current server goes down)
0
Comment
Question by:Sekar Chinnakannu
  • 4
  • 3
7 Comments
 
LVL 8

Expert Comment

by:Wilder_Admin
ID: 40300407
If i understood right your AD Server in the dr location will be shut down and moved.

So you do not need a AD Server while moving. Its the location concept or low cost settings in your domain.

It means if a client needs AD Information like auth its looking for the nearest (low cost) AD Server. For performance reasons you should have that server near by your clients. But if you do not have then the client is asking the next one when he could reach it.

So in your case if there is no server or client at DR location why you should need a AD server?
If all of your other AD Server have a global catalog then you are already redundant in any desaster case. This is for the AD objects only. For DHCP etc you need another concept.

All your requestet stept are belonging to the dcprome.exe command. You should take some time to understand the FSMO Roles in a domain and if the moved server has non of them then just move them to the new location.
0
 
LVL 25

Author Comment

by:Sekar Chinnakannu
ID: 40300438
We are not moving our server DR server, I am looking for a plan to deploy an new server in DR to take care of fail over process when we move the current AD server to new DC and when the current DC goes down.
0
 
LVL 8

Expert Comment

by:Wilder_Admin
ID: 40300449
See http://www.petri.com/installing-active-directory-windows-server-2008.htm#

You can add the new server in DR location and then move the fsmo roles http://www.petri.com/transferring_fsmo_roles.htm

then shut down the server. After you restarted in the new location you can move again the fsmo roles to the original one.
0
NAS Cloud Backup Strategies

This article explains backup scenarios when using network storage. We review the so-called “3-2-1 strategy” and summarize the methods you can use to send NAS data to the cloud

 
LVL 25

Author Comment

by:Sekar Chinnakannu
ID: 40300460
Ok how can I confirm when I shutdown my current AD server and automatically fail over goes to new DR AD server and also Post Verification steps &  Possibilities of issues when we add new server in DR
0
 
LVL 8

Expert Comment

by:Wilder_Admin
ID: 40300470
There are no automatic fail over. All you have to do is manual work. The only concept i know for automatic failover is the combination of windows 2012 Server and hyper-v. Because this server typ you are able to boot and its regetting the sync files of the dc cluster.

For verification you can take from the MS blog: http://support.microsoft.com/kb/298143

There are no issues when you add a ad server to an existing forest. If the network is accessable for all ports needed its working like a charm.
0
 
LVL 25

Author Comment

by:Sekar Chinnakannu
ID: 40300477
ok but still when my current DC goes down I want all my connection need to redirect\fail over to DR AD server. not to next available DC or other site
0
 
LVL 8

Accepted Solution

by:
Wilder_Admin earned 500 total points
ID: 40301014
0

Featured Post

Ransomware: The New Cyber Threat & How to Stop It

This infographic explains ransomware, type of malware that blocks access to your files or your systems and holds them hostage until a ransom is paid. It also examines the different types of ransomware and explains what you can do to thwart this sinister online threat.  

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Possible fixes for Windows 7 and Windows Server 2008 updating problem. Solutions mentioned are from Microsoft themselves. I started a case with them from our Microsoft Silver Partner option to open a case and get direct support from Microsoft. If s…
Restoring deleted objects in Active Directory has been a standard feature in Active Directory for many years, yet some admins may not know what is available.
This tutorial will walk an individual through locating and launching the BEUtility application and how to execute it on the appropriate database. Log onto the server running the Backup Exec database. In a larger environment, this would generally be …
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …

860 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question