KHALID KHAN
asked on
Domain trust created by PDC name
i have only one domain and 30 domain controllers . when i am checking the AD domain and trust there i saw our pdc in outgoing trust .
question :
1:does i need this trust .
2: i installed a new server for our pdc and transfer all roles to that now can i shutdown our old pdc .
question :
1:does i need this trust .
2: i installed a new server for our pdc and transfer all roles to that now can i shutdown our old pdc .
Hello, Khalid,
Remember there are five FSMO roles you have to worry about, and the PDC Emulator is just one of those. You also need to think about your RID Master, Domain Naming Master, Infrastructure Master and Schema Master.
Remember there are five FSMO roles you have to worry about, and the PDC Emulator is just one of those. You also need to think about your RID Master, Domain Naming Master, Infrastructure Master and Schema Master.
ASKER
@Aanand Singh Karki
thanks for the advice .
i didn't created the external trust . but may be it is created before by one of my colleague now he is not here . your first advice is not clear to me . should i delete this trust which is created by my old PDC name if i have only one domain .
2: yes all the five roles are transferred and replication is also completed . and i didn't hard coded the old PDC to any application .
thanks for the advice .
i didn't created the external trust . but may be it is created before by one of my colleague now he is not here . your first advice is not clear to me . should i delete this trust which is created by my old PDC name if i have only one domain .
2: yes all the five roles are transferred and replication is also completed . and i didn't hard coded the old PDC to any application .
ASKER
@Joseph Hornsey
thanks for the information
yes all the five roles are transferred to the new server and pdc emulator owner is also the new server .
thanks for the information
yes all the five roles are transferred to the new server and pdc emulator owner is also the new server .
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thank you Aanand Singh Karki Sir .
I hope I had understood your concerns well and based on this below would be my advice -
1): By default no external trusts are created within AD forest, hence i would advice you to check in Active Directory Domain and Trust console to check if you / your team had created the external forest trust in the past or if that existed through legacy version of AD.
2): Yes if you have moved the fsmo to new server, please make sure the AD replication is completed across your AD Topology (type Netdom Query FSMO on cmd to verify the current owner). also Make sure you have not hard-coded the old DC for any services (such as Exchange or any other third party applications).
Regards,
Aanand Singh Karki