Removing a secondary 2008 R2 DC

I have a domain that is at 2008 R2 Functional Level with 2 Domain Controllers. This Domain is part of a trust relationship with another domain. The DC's also perform the function of DNS and DHCP.  I have a secondary DC that does not house the FSMO roles acting a lot flaky.  I am thinking about removing this machine as a DC and removing it from the Domain Then re-adding it and re-adding the role of DC.  What process do I need to follow? What kinds of issues can I expect?  Would it be better to recreate the machine (It is a VM on ESXI 5.5) name it exactly as the other and re-create the roles exactly as the other?

By flaky, it was restored and has not worked right since.  I had a host failure and now the windows time service will not restart.  I just want to essentially start from scratch, but would like a road map of sorts.

Or would it be better do take this opportunity to add my first 2012 DC? What issues might I have there?

Thanks in advance.
dustaineAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Leroy LuffHead of IT & DIgitalCommented:
I would go the route of adding a 2012 DC.

Add the 2012 1st and transfer FSMO roles to it and then remove the 2008 secodary DC.

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
dustaineAuthor Commented:
If I go that route, Are there any upgrades to Exchange or anything that I need to worry about?
Leroy LuffHead of IT & DIgitalCommented:
I am guessing you have exchange 2010. There will be no problems.

Please note : You need to add the 2012 DC before removing the secondary 2008 DC. This is just for redundancy purposes.  I would also check that the 2012 DC is fully updated before moving the roles to it by using repadmin /syncall command.

Regards
Making Bulk Changes to Active Directory

Watch this video to see how easy it is to make mass changes to Active Directory from an external text file without using complicated scripts.

StuartTechnical Architect - CloudCommented:
Adding a 2012 DC shouldn't cause any issues with Exhange its when you raise the functional level you need to be careful, eg if you are running Exchange 2003 this will not run under 2012 FFL

I had an issue a while back upgrading the functional level where exchange lost its Kerberos sync it was just a case of running a command to refresh it - I will try and dig out the article

By the sounds of your question though it doesn't look like this will affect you :)
StuartTechnical Architect - CloudCommented:
KDC issues I mentioned were 2003-2008 so disregard that :)
dustaineAuthor Commented:
Everything we have is 2008 level and Exchange is at 2010, so based on what I am reading, I should have no problems. Leroy, when you say fully updated, I assume you mean with patches etc.  I would have it fully updated prior to adding the roles of DC, etc.
StuartTechnical Architect - CloudCommented:
I believe he meant to check the AD replication was up to date - repadmin /showrepl on the new DC should show this before any FSMO roles are moved

Although I would also say yes to fully patching the server.
Leroy LuffHead of IT & DIgitalCommented:
Yes i meant AD is updated but I also agree on a fully patched server.
dustaineAuthor Commented:
Cool beans, I would rather be sure of something and ask the seemingly obvious questions rather than leave anything to chance. I think I will make preparations and go the 2012 Route... gonna have to do it at some point, might as well be now.
Seth SimmonsSr. Systems AdministratorCommented:
This question has been classified as abandoned and is closed as part of the Cleanup Program. See the recommendation for more details.
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Active Directory

From novice to tech pro — start learning today.