Windows Server 2012 R2 DC Procedure
Can someone point me to an article, or provide step by step instructions on how to promote a 2012 R2 server to a domain controller when your current DC is Windows Server 2003. I've tried to raise the domain functional level of the 2012 R2 server, but it tells me I don't have to since the current DC is 2003. But when I try to promote the 2012 R2 to a domain controller it tells me...
To update the domain functional level, the Active Directory Domain Controllers in the domain must be running the appropriate version of windows.
domain Name
sollitt.local
Current domain functional level
Windows Server 2003
The following Active Directory Domain Controllers are running earlier versions of windows:
domain Name AD DC Version of Windows
sollitt.local srvsol02.sollitt.local Windows Server 2003 5.2 (3790)
To update the domain functional level, the Active Directory Domain Controllers in the domain must be running the appropriate version of windows.
domain Name
sollitt.local
Current domain functional level
Windows Server 2003
The following Active Directory Domain Controllers are running earlier versions of windows:
domain Name AD DC Version of Windows
sollitt.local srvsol02.sollitt.local Windows Server 2003 5.2 (3790)
Casey Weaver
Do both your DC's have all their updates? You need to have at least SP2 on the 2003 Server.
It would probably help to transfer FSMO roles over to the new domain controller. Especially if you plan to decommission the 2k3 DC. Check out this article on how to do that:
http://blogs.technet.com/b/canitpro/archive/2015/02/11/step-by-step-migrating-windows-server-2003-fsmo-roles-to-windows-server-2012-r2.aspx
http://blogs.technet.com/b/canitpro/archive/2015/02/11/step-by-step-migrating-windows-server-2003-fsmo-roles-to-windows-server-2012-r2.aspx
ASKER
Yes, they have SP2 installed.
Is the domain and forest functional levels set to 2003?
Is your forest level 2003? Forest levels tend to get forgotten in upgrades.
ASKER
How do I tell?
Open AD Domains and Trusts, right-click on the root object and click Raise Forest Functional Level.
Do you still have your Windows Server 2003 in your environment? If yes, you cannot raise your domain level to Windows 2012 unless you decommission your Windows 2003 domain.
ASKER
Jeremy....it tells me the level is 2003 so it can't be raised.
OK, let's back up a bit. In AD Users and Computers, when you navigate to the Domain Controllers OU, how many servers do you see?
ASKER
Two
OK, are you sure this server you're trying to promote isn't already a domain controller? Is one of the servers in the OU the 2012 server you're trying to promote?
ASKER
No
OK so we've established that the domain and forest functional levels are 2003.
Are you by any chance trying to install this as an RODC?
On the two domain controllers and the 2012 server, can you run ver at the command prompt and post the results?
Are you by any chance trying to install this as an RODC?
On the two domain controllers and the 2012 server, can you run ver at the command prompt and post the results?
ASKER
Not as a RODC.
Versions 5.2.3790, 6.1.7601 and 6.3.9600
Versions 5.2.3790, 6.1.7601 and 6.3.9600
can you run netdom query dc make sure that all of the DC's that are present are actually working DC's. I have seen issues where 2003 DC's were not properly removed from the environment which casued issues going to a differetn functional level until the old DC was removed using ADSIEdit.msc..
Will.
Will.
OK, so everything looks good as far as versions go. Looking at the error you're getting, that's not one that I think gets generated when promoting a DC. I would expect that when trying to raise functional levels.
You may have already done this but let's just make sure.
To promote your 2012 server:
- In server Manager, click Manage and select Add Roles and Features
- Choose your server and select the Active Directory Domain Services to install.
- After the wizard finishes, click the notifications area in server manager and click Promote this server to a domain controller
- Follow the prompts
You may have already done this but let's just make sure.
To promote your 2012 server:
- In server Manager, click Manage and select Add Roles and Features
- Choose your server and select the Active Directory Domain Services to install.
- After the wizard finishes, click the notifications area in server manager and click Promote this server to a domain controller
- Follow the prompts
ASKER
Active Directory Domain Services is already installed.
Will...would I run netdom query dc from a command prompt on any machine?
Will...would I run netdom query dc from a command prompt on any machine?
Active Directory Domain Services is already installed.Good, but did you run the domain controller promotion wizard?
What exactly do you do to promote the 2012 server?
- After the wizard finishes, click the notifications area in server manager and click Promote this server to a domain controller
- Follow the prompts
ASKER
That's were it won't let me..
Verification of replica failed. The forest functional level is Windows 2000. To install ...........
Verification of replica failed. The forest functional level is Windows 2000. To install ...........
OK, so that's new info.
On the 2008 R2 DC, run these commands and post the results.
In Powershell:
On the 2008 R2 DC, run these commands and post the results.
In Powershell:
Get-ADDomain | select DomainMode
Get-ADForest | select ForestMode
netdom query dcASKER
See attached
Results.pdf
Results.pdf
Sorry I wasn't more specific. You need to have the AD module loaded.
Run this:
Run this:
Import-Module activedirectory
Get-ADDomain | select DomainMode
Get-ADForest | select ForestModeASKER
See attached....Forest shows 2000
Results.pdf
Results.pdf
OK, you need to raise the forest functional level.
$Forest = Get-ADForest
Set-ADForestMode -Identity $Forest -Server $Forest.SchemaMaster -ForestMode 2ASKER
See attached....AD Web Services is running. I stopped it and restarted and tried again.
Results.pdf
Results.pdf
OK, so the infrastructure master is on the 2003 server then.
Let's try Active Directory Domains and Trusts again. This time I posting a picture:
1. Open AD Domains and Trusts
2. Right-click on the root object (all the way at the top)
3. Click Raise Forest Functional Level.
Let's try Active Directory Domains and Trusts again. This time I posting a picture:
1. Open AD Domains and Trusts
2. Right-click on the root object (all the way at the top)
3. Click Raise Forest Functional Level.
ASKER
See attached
Results.pdf
Results.pdf
You're not right-clicking on the correct object. Click where the green arrow is, not the red one.
ASKER
I'm so sorry....that worked. See attached for new problem. Should I make sure that all the DNS settings/info are the same as on the current DC server?
DNS-Results.pdf
DNS-Results.pdf
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
All Jeremy's directions were clear and his knowledge is outstanding!
Glad to help!