?
Solved

Removing DC with old domain and replacing with new DC in current domain

Posted on 2014-12-10
4
Medium Priority
?
166 Views
Last Modified: 2014-12-11
4 sites, two different domains in domain trust relationship.
The 2nd domain is a 2003 domain that exists at one site, a remote site that connects to 1st, 2008 domain through VPN connection on Sonicwall.
I want to remove the 2003 DC at this remote site and replace it with a 2008 Member DC and connect it to existing domain.

What is a summary of proper course of action?
Would it start with decommissioning the 2003 DC even though it is the first,last and only DC for this solitary domain?
0
Comment
Question by:nickmart7
  • 2
  • 2
4 Comments
 
LVL 38

Expert Comment

by:Hypercat (Deb)
ID: 40491882
What other devices/workstations exist at the 2003 domain site?

Basically, the first step would be to unjoin any local workstations from the 2003 domain and join them to the 2008 domain either through a VPN connection before putting the new server in place, or with the new server in place join them directly through that server.  It might be advisable for initial domain synchronization, depending on the number of workstations and type and amount of other data like group policies or roaming profiles, to use the VPN method and synch the new DC first before bringing it to the remote office.

Then you can simply disconnect the 2003 server from the existing physical network.  If you're not planning on reusing it at all, you could wipe the hard drives and either donate it or junk it. If you are planning to reuse it or donate it with the OS intact, then you'd want to run dcpromo to remove any domain-related information from it, and otherwise of course clean up any data left behind.
0
 

Author Comment

by:nickmart7
ID: 40491900
It is a small remote office with about a handful of workstations/laptops and a couple of printers...
The existing 2003 DC is just a DC with all the usual stuff, DHCP, DNS, etc.. and it also acts as a file server.
I figured i would just migrate the file data over to the new DC and then connect it to the existing domain as a new member and done.

Just want to make sure of a couple of things:

So I should fire up and install the new 2008 DC here at HQ office, set up and join user/computer accounts while it is here before bringing it over to the remote office?

I don't need to disengage the existing domain trust relationship from within the old 2003 DC?
0
 
LVL 38

Accepted Solution

by:
Hypercat (Deb) earned 2000 total points
ID: 40492016
That should work fine. The only thing I failed to consider really was whether you wanted to migrate the user accounts from the 2003 to the 2008 domain or just create new accounts on the 2008 domain.  If the users already have existing accounts on the 2008 domain, or there are few enough of them so that you wouldn't need to do a migration of user information, then that would make it a bit easier.  In either case, the trust relationship between the two domains could be left in place until you're ready to remove it after all of the workstations and users have been moved to the new domain.

Here's a little article about cross-domain trusts and migrating if it's relevant to your situation:

http://technet.microsoft.com/en-us/library/cc739413(v=WS.10).aspx
0
 

Author Comment

by:nickmart7
ID: 40494898
thanks
0

Featured Post

Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell® is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

ADCs have gained traction within the last decade, largely due to increased demand for legacy load balancing appliances to handle more advanced application delivery requirements and improve application performance.
It’s been over a month into 2017, and there is already a sophisticated Gmail phishing email making it rounds. New techniques and tactics, have given hackers a way to authentically impersonate your contacts.How it Works The attack works by targeti…
This tutorial will walk an individual through the steps necessary to configure their installation of BackupExec 2012 to use network shared disk space. Verify that the path to the shared storage is valid and that data can be written to that location:…
This tutorial will give a short introduction and overview of Backup Exec 2012 and how to navigate and perform basic functions. Click on the Backup Exec button in the upper left corner. From here, are global settings for the application such as conne…

621 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question