Expiring Today—Celebrate National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

DCpromo down a server and adding it back

Posted on 2016-09-26
8
Medium Priority
?
68 Views
Last Modified: 2016-10-31
I am in the process of converting our servers to VmWare and don't want to risk migrating my Domain controllers.  I have several things pointed to the DNS of the IP of my DC'S.   I was wondering if it is okay to DCpromo down an existing DC, migrate it and then DCpromo the same machine back to a domain controller.  I would transfer all of the roles off before the process of bringing it down.    The server is 2008 R2.
Thank you.
0
Comment
Question by:Tim Lewis
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 3
  • 2
8 Comments
 
LVL 6

Accepted Solution

by:
sAMAccountName earned 2000 total points
ID: 41816193
Shouldnt be a problem at all.  Just expect those servers pointing to it to encounter dns resolution issues until the DC is back up and running.  If you want to avoid that, you can demote the DC but leave DNS in place so it will act as a caching server for clients.  Any client that is pointing to it directly via IP for LDAP is going to have authentication issues while it is offline (some third party apps can use IP addresses for a DC in their LDAP configuration - you should know where these are and update them accordingly)

Make sure after you demote the domain controller that all the DNS records for it are gone.
0
 
LVL 123
ID: 41816472
That is one method of doing it.

Why not create a new VM, and transfer the roles.
0
 

Author Comment

by:Tim Lewis
ID: 41816476
I can minimize the DNS server downtime this way.    If I remove it as a DC but keep the DNS role I don't have to reconfigure anything on the network for the DNS being used.
0
Portable, direct connect server access

The ATEN CV211 connects a laptop directly to any server allowing you instant access to perform data maintenance and local operations, for quick troubleshooting, updating, service and repair.

 
LVL 123
ID: 41816488
do you not have two DNS servers at present ?
0
 

Author Comment

by:Tim Lewis
ID: 41816491
We do.  I just figured this is easier than setting up a server, bringing down the current, changing the IP on the new one to match the old.   I am trying to avoid changing the DNS setting on the network cards of any devices that are not DHCP.
0
 
LVL 123
ID: 41816569
if you have two DNS servers, clients, will use the second DNS server, if the first is not available.

so it does not matter, how long your first server is down for!
0
 
LVL 6

Expert Comment

by:sAMAccountName
ID: 41816618
if you have two DNS servers, clients, will use the second DNS server, if the first is not available.

In theory, thats correct.  In practice however, some platforms dont behave that way.  Ubuntu for instance will latch onto a DNS server and hang on for dear life.  if that server goes down, it doesnt gracefully fail over to the next.  It *sorta* starts using the next in the list, but odd things happen with LDAP and other things until you clear the cache/restart the network daemon.
0
 

Author Closing Comment

by:Tim Lewis
ID: 41866941
Worked Great.  All connect reestablished themselves after it came back online as a DC.  Just had to clear out some DNS entries that were left behind after demote.
1

Featured Post

Office 365 Training for IT Pros

Learn how to provision tenants, synchronize on-premise Active Directory, implement Single Sign-On, customize Office deployment, and protect your organization with eDiscovery and DLP policies.  Only from Platform Scholar.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

For anyone that has accidentally used newSID with Server 2008 R2 (like I did) and hasn't been able to get the server running again because you were unlucky (as I was) and had no backups - I was able to get things working by doing a Registry Hive rec…
Here's a look at newsworthy articles and community happenings during the last month.
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …
How to Install VMware Tools in Red Hat Enterprise Linux 6.4 (RHEL 6.4) Step-by-Step Tutorial

719 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question