• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 167
  • Last Modified:

Removing DC with old domain and replacing with new DC in current domain

4 sites, two different domains in domain trust relationship.
The 2nd domain is a 2003 domain that exists at one site, a remote site that connects to 1st, 2008 domain through VPN connection on Sonicwall.
I want to remove the 2003 DC at this remote site and replace it with a 2008 Member DC and connect it to existing domain.

What is a summary of proper course of action?
Would it start with decommissioning the 2003 DC even though it is the first,last and only DC for this solitary domain?
0
nickmart7
Asked:
nickmart7
  • 2
  • 2
1 Solution
 
Hypercat (Deb)Commented:
What other devices/workstations exist at the 2003 domain site?

Basically, the first step would be to unjoin any local workstations from the 2003 domain and join them to the 2008 domain either through a VPN connection before putting the new server in place, or with the new server in place join them directly through that server.  It might be advisable for initial domain synchronization, depending on the number of workstations and type and amount of other data like group policies or roaming profiles, to use the VPN method and synch the new DC first before bringing it to the remote office.

Then you can simply disconnect the 2003 server from the existing physical network.  If you're not planning on reusing it at all, you could wipe the hard drives and either donate it or junk it. If you are planning to reuse it or donate it with the OS intact, then you'd want to run dcpromo to remove any domain-related information from it, and otherwise of course clean up any data left behind.
0
 
nickmart7Author Commented:
It is a small remote office with about a handful of workstations/laptops and a couple of printers...
The existing 2003 DC is just a DC with all the usual stuff, DHCP, DNS, etc.. and it also acts as a file server.
I figured i would just migrate the file data over to the new DC and then connect it to the existing domain as a new member and done.

Just want to make sure of a couple of things:

So I should fire up and install the new 2008 DC here at HQ office, set up and join user/computer accounts while it is here before bringing it over to the remote office?

I don't need to disengage the existing domain trust relationship from within the old 2003 DC?
0
 
Hypercat (Deb)Commented:
That should work fine. The only thing I failed to consider really was whether you wanted to migrate the user accounts from the 2003 to the 2008 domain or just create new accounts on the 2008 domain.  If the users already have existing accounts on the 2008 domain, or there are few enough of them so that you wouldn't need to do a migration of user information, then that would make it a bit easier.  In either case, the trust relationship between the two domains could be left in place until you're ready to remove it after all of the workstations and users have been moved to the new domain.

Here's a little article about cross-domain trusts and migrating if it's relevant to your situation:

http://technet.microsoft.com/en-us/library/cc739413(v=WS.10).aspx
0
 
nickmart7Author Commented:
thanks
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell® is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

  • 2
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now