Active directory new domain

Hello.
If we had a domain name names xyz.com working as dhcp and DNS as well.  

We created an offline domain that is exactly the same name, same ip, same dhcp and DNS settings. Recreat the list of all computers and users from scratch.

If we take the first domain offline and  replace it with the new one. Will the clients machine can login right away. Or should we join them to the new Domain which is also called xyz.com with the same IP like the last one ?
LVL 2
Da_Ch0senAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Andy MInternal Systems ManagerCommented:
I believe you would need to disjoin and rejoin the computers.

Even though the domains are named the same and are on the same subnet there will be differences in the AD that would cause issues.
0
Brent ArnoldTechnicianCommented:
I think you're going about this wrong. The proper thing to do in this situation is to join the new DC to the current domain. Once you've done that you'll transfer FSMO roles from the old DC to the new one. This will propogate all of the data you want to bring over to the new server automatically, including your list of clients.

These are some good guides for transferring FSMO roles:

http://support.microsoft.com/en-us/kb/255504
http://blogs.technet.com/b/canitpro/archive/2013/05/27/step-by-step-active-directory-migration-from-windows-server-2003-to-windows-server-2012.aspx
0
Lee W, MVPTechnology and Business Process AdvisorCommented:
You've created a LOT of work for yourself, most likely unnecessarily.

In Windows, AD gives all objects unique IDs - Globally Unique IDs (GUID) - so that no two objects are alike.  When you first create the domain, it RANDOMLY assigns a GUID to the domain and then every user, computer, and AD object gets a GUID that is based on the domain GUID.  This ensures that Windows - like the IRS sees two people named John Smith as different - sees two computers (or domains, or users) with the same name are actually different.

(This iis for security - otherwise - I could setup a DC, use the same names you have, then plug it in to your network and potentially steal your data because all the computers would think I'm you - If Windows didn't use the GUID model).

There is NO WAY what you've done will work without disjoining and rejoining the domain.

Why didn't you just migrate properly to begin with?  Now you'll have to migrate computers and user profiles which if you did a proper migration wouldn't need to be done.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Da_Ch0senAuthor Commented:
the reason i did what i did, is because i wanted to recreate the GPO's and the users and groups from scratch.
but will leave the logon usernames the same like before.
i already did as suggested above.
thanks all
0
Lee W, MVPTechnology and Business Process AdvisorCommented:
Your machines are already tattooed with the Group Policies they were going to have, even a new domain won't necessarily reset the settings.

You could also create a new set of groups preserving the existing for security purposes and migrate based on those.  It would still have been a LOT less work than disjoining and rejoining followed by profile migrations - unless you don't intend to recover ANY profile data/leave that ENTIRELY up to the user (that usually gets admins fired in my experience).
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Active Directory

From novice to tech pro — start learning today.