Solved

Windows Server 2012 Active directory and WSUS issues

Posted on 2015-01-14
5
52 Views
Last Modified: 2016-06-14
I have been struggling with this issue for a while now. I have 4 AD servers. One Windows 2003 server, which is the primary, and three Windows 2012 servers. The AD syncing seems to be fine between three of them. One of the Win2012's is not syncing at all, So I just usually leave the AD and its associated services as not running on this one box. This has been going on for quite a while so it's well past the tombstone period. This server is also a WSUS server and it can't communicate with any of its clients. This one problematic AD server is also a primary file server and has extensive permissions setup throughout all the shared file folders and subfolders. There are close to a million files on it. I eventually want to have this 2012 server has the primary since it has an SSD Raid 5 array and is a very fast machine.

My inclination is to try uninstalling AD and also perhaps unjoining and then rejoining this box to the domain. However I'm not sure if that will kill all the permissions I have setup on all those files and folders. Having to re-setup all those folder permissions would be a nightmare.

If I remove the AD server role from this machine and unjoin it and rejoin it to the domain, are the file permission going to be reset? Any other ideas?

Thanks!
0
Comment
Question by:crdixon
  • 2
5 Comments
 
LVL 34

Accepted Solution

by:
Seth Simmons earned 500 total points
ID: 40550348
I'm not sure if that will kill all the permissions I have setup on all those files and folders

it does not change permissions
at the file system level, it has the SID of the objects in the ACL
you are fine removing from the domain and adding again - though you should do a metadata cleanup before adding to the domain again due to the AD tombstone

Clean Up Server Metadata
http://technet.microsoft.com/en-us/library/cc816907(v=ws.10).aspx
0
 

Author Comment

by:crdixon
ID: 40608645
Going to try to do this over the holiday weekend...thanks!
0
 
LVL 34

Expert Comment

by:Seth Simmons
ID: 41651712
i answered the question and provided a technical reference that explained things in more detail
0

Featured Post

Comprehensive Backup Solutions for Microsoft

Acronis protects the complete Microsoft technology stack: Windows Server, Windows PC, laptop and Surface data; Microsoft business applications; Microsoft Hyper-V; Azure VMs; Microsoft Windows Server 2016; Microsoft Exchange 2016 and SQL Server 2016.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

On July 14th 2015, Windows Server 2003 will become End of Support, leaving hundreds of thousands of servers around the world that still run this 12 year old operating system vulnerable and potentially out of compliance in many organisations around t…
I don't know if many of you have made the great mistake of using the Cisco Thin Client model with the management software VXC. If you have then you are probably more then familiar with the incredibly clunky interface, the numerous work arounds, and …
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controlle…
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …

803 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question