Windows Server 2003 Domain Controller

Hi All we have a Small Domain and the Domain Controller is a Windows Server 2003 Machine, I would like to add another DC for Stability and I have Prepared a Windows Server 2008 R2 Server.

What do I need to perform to be able to use this as a failover DC?

The Domain Functional Level is Windows Server 2003,

Do I also need to make the 2008 Machine a Global Catalogue Server, and will what I am doing give me Resilience in case my 2003 DC ever Fails?
pepps11976Asked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Seth SimmonsSr. Systems AdministratorCommented:
What do I need to perform to be able to use this as a failover DC?

it doesn't work as a failover in the case of failover clustering
you use both domain controllers as dns servers for all your clients (either static or through dhcp)
it is a multi-master replication so if one goes down briefly (maintenance or otherwise) users can still login to the other domain controller transparently

The Domain Functional Level is Windows Server 2003,

this is fine

Do I also need to make the 2008 Machine a Global Catalogue Server

i would recommend you do

what I am doing give me Resilience in case my 2003 DC ever Fails?

if the 2003 server goes down hard and never comes back, you will need to do three things - metadata cleanup, seize fsmo roles, and configure the 2008 server as a time server

Clean Up Server Metadata
https://technet.microsoft.com/en-us/library/cc816907(v=ws.10).aspx

Using Ntdsutil.exe to transfer or seize FSMO roles to a domain controller
https://support.microsoft.com/en-us/kb/255504

How to configure an authoritative time server in Windows Server
https://support.microsoft.com/en-us/kb/816042

you can transfer (not seize) the fsmo roles and make the 2008 server a time server in advance at anytime transparently using the same articles
0
pepps11976Author Commented:
Ok thanks for the good info, so to make this a DC do I simply just go ahead and add this role to the 2008 server?

Also what is the benefit of making the 2008 server a Global catalogue server as well what does this function do?
0
Seth SimmonsSr. Systems AdministratorCommented:
to make this a DC do I simply just go ahead and add this role to the 2008 server?

you need to do additional steps; the schema needs to be prepared for 2008 - then install the role and run the dcpromo wizard

if you have 32bit version of 2003, you need to run adprep32 in the \support\adprep folder of the 2008 media

you need to run...

adprep32 /forestprep
adprep32 /rodcprep
adprep32 /domainprep /gpprep


if it is 2003 x64, then run adprep in that same folder with the same switches

what is the benefit of making the 2008 server a Global catalogue server as well what does this function do?

here is an article that explains in detail

What Is the Global Catalog?
https://technet.microsoft.com/en-us/library/cc728188(v=ws.10).aspx

there are some services (like exchange) that will have major problems if it can't find a GC in the environment; in addition to what is in the article
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
pepps11976Author Commented:
Just wanted to check with you but when promoting to a DC it shows the following is this correct before I click next?

ScreenShot
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Active Directory

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.