We have 2 Windows 2 x Windows 2008 existing Domain Controllers and it is my intention to replace them with 2 new x Windows 2012 R2 Domain Controllers.
I have dome this before with Windows 2003 Server; but, I want to make sure that I am not missing anything important. I can describe my plan below and I want to make sure that I am not missing anything important. I have heard of others having problems setting up new Domain Controllers and I do not want to have those same problems. Please comment on my plan below and let me know if I am missing anything important.
1. Clearly Identify what role each current Domain Controller is providing.
a. Global Catalogue Server
b. Primary FSMO roles
c. DNS Server.
d. DHCP server ( and scope settings)
2. Identify which Servers/PC's/Appliances have static settings that connect to the current Domain Controllers.
a. Firewalls - VPN / Router - DNS / Router DHCP - Relay.
3. Create 2 new Domain Controllers that are DNS servers as well.
a. Begin changing the DNS server Ip address settings on each appliance from the older DC's to the new DC's.
b. use the instructins from: https://blogs.technet.microsoft.com/canitpro/2013/05/05/step-by-step-adding-a-windows-server-2012-domain-controller-to-an-existing-windows-server-2003-network/
c. Then begin changing the roles for each appliance (from step 2) to point to the new Domain Controllers. This must be performed in a step by step and systematic/. organized approach.
4. Plan to change the primary FSMO roles from the primary DC to one of the new DC's.
5. Then when everything you can think of has been changed, now power off 1 of the Domain Controllers.
a. This will test if any other configuration are changes are still required.
b. If something undesirable happens then just power it back on.
c. If nothing bad happens after 3 days then one may proceed to demote that domain controller.
Question1: Does the above plan provide a good starting point, for this project?
a. Any other suggestions?
Question2: Does the web site reference https://blogs.technet.microsoft.com/canitpro/2013/05/05/step-by-step-adding-a-windows-server-2012-domain-controller-to-an-existing-windows-server-2003-network/
provide a good reference?
Question3: How can we test if the new Domain Controllers can see each other correctly?
a. I heard a story that someone setup 2 new Domain Controllers and they could not see each other.
b. Then eventually both DC's stopped working and no one could logon to the network.
Question4: How can I properly demote the Domain Controller from the domain?
a. I have found 2 web resources: