Transfer Domain Naming Master from a Crashed Server

I had a 2003 domain controller and it crashed and no chance of recovery and no backup.  I also have a 2008 r2 server and the roles were split.  I need 2 things a)add a 2012 to the domain and it will not add because it still thinks the domain is 2000 and add domain naming master role to this 2008r2 server.  Is this possible?
WellingtonISAsked:
Who is Participating?
 
Will SzymkowskiSenior Solution ArchitectCommented:
What you need to do is Seize the Domain Naming Master role to the 2008R2 server.
https://technet.microsoft.com/en-us/library/cc816779%28v=ws.10%29.aspx

Then you need to perform the metadata cleanup to remove the 2003 server. Make sure that you also cleanup all of the SRV records that still might be present under _msdcs.domain.com.
https://technet.microsoft.com/en-us/library/cc736378%28v=ws.10%29.aspx

Then raise the domain and forest functional level to at least 2003, then promote your 2012 server as a DC.

Those are all of the steps you need to perform and in that order.

Will.
0
 
WellingtonISAuthor Commented:
The new 2012 server is seeing the old DC and I can't promote it.
0
 
Will SzymkowskiSenior Solution ArchitectCommented:
The new 2012 server is seeing the old DC and I can't promote it.

Yes i realize that. You need to follow my steps in order, which i have provided in my first post. You need to seize the roles, perform metadata cleanup, then you will be able to promote the 2012 server as a DC.

Please read and follow all of the instructions and you will be fine.

Will.
0
Ultimate Tool Kit for Technology Solution Provider

Broken down into practical pointers and step-by-step instructions, the IT Service Excellence Tool Kit delivers expert advice for technology solution providers. Get your free copy now.

 
WellingtonISAuthor Commented:
When I run metadata clean up message says a global connection already exists.  No arguements should be specified.  I ran everything and the roles seemed to have transfered.  Yet the new server still sees the old server
0
 
Will SzymkowskiSenior Solution ArchitectCommented:
Did you Seize the Role first to the 2008R2 DC?

You need to do that first. You cannot perform a metadata cleanup if a fsmo role is still assigned the domain controller.

Will.
0
 
WellingtonISAuthor Commented:
Yes I did.  I seized the roles first.  I'm rebooting my 2012 server.  All the roles are transferred 100%  I think the problem is AD on the new server.  I added AD before I realized it was seeing the old DC.  I just removed AD and I'm rebooting.  I'll start over once the new server comes up
0
 
WellingtonISAuthor Commented:
OK when I reboot and try to add AD roles it's only seeing the old server??? I"m not sure why this is still occuring...
0
 
Will SzymkowskiSenior Solution ArchitectCommented:
Before I continue repeating myself, please tell me what steps YOU have so far.

Will.
0
 
WellingtonISAuthor Commented:
OK here's what I've done  I ran ntdsutil and siezed all the roles.  I tried to run metadata cleanup and got that error You cannot perform a metadata cleanup if a fsmo role is still assigned the domain controller.  This is the error when I try to run metadata cleanup
Now I can see the server but the new server still thinks the domain is a 2000 domain.  Do I need to run adprep or domain prep?  So now when I'm trying to promote the serve its tell me the domain is 2000??? The function level is 2008
error.png
0
 
Will SzymkowskiSenior Solution ArchitectCommented:
You need to run metadata cleanup from the 2008R2 Domain Controller when you are seizing the roles. If you have seized the roles successfully then try running this command repadmin /fsmo (you should see the 2008 DC as the new role holder, you can also check within ADUC as well).

Once you have done that Launch NTDSUtil Runas Administrator. Perform the cleanup (you also need to make sure that your account has the proper permissions as well. I would add you account to domain, enterprise and schema admins, just to be sure).

When these items have been removed from NTDSUtil, make sure that the 2003DC computer object has been removed from the domain controllers OU. Check DNS _msdcs.yourADdomain.com zone and go through all of the SRV records i.e. (pdc/gc/domain/forest etc) to ensure that the 2003 DC is removed. If you do see objects in the SRV records for the 2003 server you can just delete them.

Once this has been cleaned up, you then need to raise the Forest/Domain functional level to 2003 (at least) before you can promote your 2012 server to a DC.

Will.
0
 
WellingtonISAuthor Commented:
Ran everything and the old server is gone! All roles are transferred to 2008 r2 server.  I still can't promote the 2012 server! It's doesn't see the Domain controller?  I don't get it because I've installed AD on that box and it's there
0
 
WellingtonISAuthor Commented:
I think I'm going to have to wind up demoting the DC and redoing the entire domain.  That's will be next time I get back here.  Thanks for trying to help but nothing is working.
0
 
Will SzymkowskiSenior Solution ArchitectCommented:
Whoa! Seriously? All of those steps i provided are the correct way to remove a DC from the domain. Re-creating the domain will take a lot of work, i would consider re-trying it.

Will.
0
 
WellingtonISAuthor Commented:
Everything you said was 100% correct.  The issue was I was able to raise the function level of the domain but neglected to realize that the forest level was still 2003 because it wasn't showing up.    Once I found out where is was I raised the forest level to 2008 r2 I rebooted the server and tried again. This time I was successful in creating the 2012 domain controller.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.