Trying to upgrade and migrate domain controller from current DC windows server 2003 r2 to new isntalled windows server 2012 r2 on a new server!!

Hello.

I need to migrate our current old domain controller from windows server 2003 r2 to another server we bought running windows server 2012 r2.

So i went through some online instructions and as understood i need to do the FSMO option:

I already tried to do that and get this error on the new server which i have joined to the current dc  screenshot here:  http://prntscr.com/iaechq

Migrating FSMO from 2003 to 2012 R2 - https://blogs.technet.microsoft.com/canitpro/2015/02/10/step-by-step-migrating-windows-server-2003-f....

 So i went through the first step:

Migrating FSMO from 2003 to 2012 R2 - https://blogs.technet.microsoft.com/canitpro/2015/02/10/step-by-step-migrating-windows-server-2003-f....

And i am receiving some problems where i currently have named Server1. as the domain controller running windows server 2003 r2  named as ask.local  and servertwo running server 2012 r2 where i am planing to migrate the domain.

I have attached here some screenshots hoping that someone know what the issue might be?



The server1 / server2003 as dc shows this under the event logs as well:

Event Type Warning
Event Source NETLOGON
Event Category None
Event ID 5781
Date   252018
Time   73049 AM
User   NA
Computer SERVER1
Description
Dynamic registration or deletion of one or more DNS records associated with DNS domain 'ASK.local.' failed. These records are used by other computers to locate this server as a domain controller (if the specified domain is an Active Directory domain) or as an LDAP server (if the specified domain is an application partition).

Possible causes of failure include
- TCPIP properties of the network connections of this computer contain wrong IP address(es) of the preferred and alternate DNS servers
- Specified preferred and alternate DNS servers are not running
- DNS server(s) primary for the records to be registered is not running
- Preferred or alternate DNS servers are configured with wrong root hints
- Parent DNS zone contains incorrect delegation to the child zone authoritative for the DNS records that failed registration

USER ACTION
Fix possible misconfiguration(s) specified above and initiate registration or deletion of the DNS records by running 'nltest.exe dsregdns' from the command prompt or by restarting Net Logon service. Nltest.exe is available in the Microsoft Windows Server Resource Kit CD.

For more information, see Help and Support Center at httpgo.microsoft.comfwlinkevents.asp.
Data
0000 2a 23 00 00             #..
Screenshot_1.jpg
Jonas AnderssenAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

65tdRetiredCommented:
Have the 2012 servers been promoted to DC's?
2
Justin EvansCommented:
please can you attach an ipconfig/all from the Windows2003 server and the Windows server 2012.

This will help,  it looks like you have a dns problem.
0
Jonas AnderssenAuthor Commented:
So the server2003 r2 is named server1 and is the only one dc.

The newly installed server2012 r2 has joined the domain and is a domain member.

Server1  the DC below the ipconfig /all

=========================================================
:\>ipconfig /all

indows IP Configuration

  Host Name . . . . . . . . . . . . : server1
  Primary Dns Suffix  . . . . . . . : ASK.local
  Node Type . . . . . . . . . . . . : Unknown
  IP Routing Enabled. . . . . . . . : No
  WINS Proxy Enabled. . . . . . . . : No
  DNS Suffix Search List. . . . . . : ASK.local

thernet adapter Local Area Connection:

  Connection-specific DNS Suffix  . :
  Description . . . . . . . . . . . : HP NC7781 Gigabit Server Adapter
  Physical Address. . . . . . . . . : 00-1A-4B-B0-DA-A6
  DHCP Enabled. . . . . . . . . . . : No
  IP Address. . . . . . . . . . . . : 192.168.0.1
  Subnet Mask . . . . . . . . . . . : 255.255.255.0
  Default Gateway . . . . . . . . . : 192.168.0.5
  DNS Servers . . . . . . . . . . . : 80.80.160.8
                                      80.80.160.9


=================================================================
Servertwo  who should be the new DC

C:\Windows\system32>ipconfig /all

Windows IP Configuration

   Host Name . . . . . . . . . . . . : servertwo
   Primary Dns Suffix  . . . . . . . : ASK.local
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : ASK.local

Ethernet adapter Ethernet 2:

   Connection-specific DNS Suffix  . : ask.local
   Description . . . . . . . . . . . : Broadcom BCM5708C NetXtreme II GigE (NDIS
 VBD Client) #44
   Physical Address. . . . . . . . . : 00-14-5E-FC-92-12
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   IPv4 Address. . . . . . . . . . . : 192.168.0.130(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Monday, February 5, 2018 6:07:29 PM
   Lease Expires . . . . . . . . . . : Sunday, February 11, 2018 3:58:22 PM
   Default Gateway . . . . . . . . . : 192.168.0.5
   DHCP Server . . . . . . . . . . . : 192.168.0.2
   DNS Servers . . . . . . . . . . . : 192.168.0.1
   NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Ethernet:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Broadcom BCM5708C NetXtreme II GigE (NDIS
 VBD Client) #45
   Physical Address. . . . . . . . . : 00-14-5E-FC-92-14
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.ask.local:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : ask.local
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

C:\Windows\system32>
0
Simplify Active Directory Administration

Administration of Active Directory does not have to be hard.  Too often what should be a simple task is made more difficult than it needs to be.The solution?  Hyena from SystemTools Software.  With ease-of-use as well as powerful importing and bulk updating capabilities.

DrDave242Commented:
Here's the first thing that stands out:

 DNS Servers . . . . . . . . . . . : 80.80.160.8
                                      80.80.160.9

Server1 is using DNS servers that have no knowledge of anything in the domain. Please reconfigure it to use itself as its only DNS server (since it's currently the only DC), then run these two commands on it:

ipconfig /flushdns
ipconfig /registerdns


Then restart its Netlogon service.

There may be other issues, but this should be addressed first.
3
Shaun VermaakTechnical Specialist/DeveloperCommented:
This expert suggested creating a Gigs project.
If you need help I suggest you open a gig
0
Jonas AnderssenAuthor Commented:
Hello DrDave242

The DNS Servers . . . . . . . . . . . : 80.80.160.8                                       80.80.160.9  

These are the dns from the ISP that goes out. What should i add instead of them?

Will the clients/workstations connected to the domain have internet if i remove them?
0
DrDave242Commented:
Server1's own IP address should be added there. Those ISP DNS servers can be configured as forwarders in the DNS Management console in order to allow clients and the server itself to resolve Internet DNS records, or you can use root hints to do this. (Root hints are typically configured by default.)
1
Jonas AnderssenAuthor Commented:
So here is the IP Addres on the server1 current DC and also the IP address configured on servertwo which should be the new windows server 2012 domain controller.

current DC / Windows server 2003 ip config
/ Windows server 2012 ip config
Trying to promote the win2012 to the current old domain controller getting an error
Can you help me to identify whats not allowing them to see eachother?
0
Jonas AnderssenAuthor Commented:
This is what im getting now!!!last-error.jpg
0
DrDave242Commented:
That error about the schema master is odd if the 2003R2 server is the only DC in the domain. Was there ever another DC?
0
yo_beeDirector of Information TechnologyCommented:
I have a couple of questions about the event logs on your active DC.
  1. How far back do they go?
  2. Do those error exist prior to even introducing the new 2012 server?

You may of had this issue prior to introducing the new server.
0
Jonas AnderssenAuthor Commented:
DrDave242:  Hello, Yes there was a previous DC in fact there were 2 dcs the 2nd one which is not active and has been disabled doesnt exsist anymore. But how is the possibility to identify and fix the schema master error that im getting as a prerequisite fix?


yo_bee: i have uploaded here the event logs here:   Windows server 2003 event logs
0
Jonas AnderssenAuthor Commented:
Here are the latest dcdiag logs and the latest event logs from the current DC server1.


latest dcdiag logs download here  https://1drv.ms/f/s!AqzUlIZkE7WOiD6Rd67PJV696hZa

latest event logs from server2003 the current DC    https://1drv.ms/f/s!AqzUlIZkE7WOiDkS0XBfAphWmi_h

Here are also the AD replication logs

https://1drv.ms/f/s!AqzUlIZkE7WOiEVfSyCYxgGusgpt
0
Justin EvansCommented:
This expert suggested creating a Gigs project.
It looks like you have a rouge server on 192.168.0.7  

you will need a NTDSUTIL Session to remove this server,  it currently is holding FSMO Roles and the Global Catalog,  I will be happy to work with you on this if you want to do a gig.

Error: Missing CNAME record at DNS server 192.168.0.7 :
                     6d483f1d-288d-4267-bf28-03078e4ab4c5._msdcs.ASK.local
                     [Error details: 9003 (Type: Win32 - Description: DNS name does not exist.)]
                     
                     Error: Missing DC SRV record at DNS server 192.168.0.7 :
                     _ldap._tcp.dc._msdcs.ASK.local
                     [Error details: 9003 (Type: Win32 - Description: DNS name does not exist.)]
                     
                     Error: Missing GC SRV record at DNS server 192.168.0.7 :
                     _ldap._tcp.gc._msdcs.ASK.local
                     [Error details: 9003 (Type: Win32 - Description: DNS name does not exist.)]
                     
                     Error: Missing PDC SRV record at DNS server 192.168.0.7 :
                     _ldap._tcp.pdc._msdcs.ASK.local
                     [Error details: 9003 (Type: Win32 - Description: DNS name does not exist.)]
0
yo_beeDirector of Information TechnologyCommented:
@Jonas

Question I had does your event logs go back far enough before you introduced this 2012 server and if so do you have the Event ID 5781.  I am suspecting yes being that your DNS setting on your DC was incorrectly setup as pointed out by The Dr.  

Being that you did have some other DC's  you may have to seize the FSMO roles.
https://support.microsoft.com/en-us/help/255504/using-ntdsutil-exe-to-transfer-or-seize-fsmo-roles-to-a-domain-control

Can you check to see what level your Domain and Forest are at:.
Open up ADUC from your 2003 Server and right click on the Domain | Select Properties.  Is the domain and forest level at 2003?\
ADUC1.png
0
Jonas AnderssenAuthor Commented:
Hey Justin Evans:

The 192.168.0.7 is the newly installed windows 2012 r2 server that ha just been joined on the current DC but nothing else was done.
0
Jonas AnderssenAuthor Commented:
Hello yo_bee:

Yep the forest level is at win 2003
yes.jpg
0
yo_beeDirector of Information TechnologyCommented:
0
Jonas AnderssenAuthor Commented:
yo_bee  yeah but impossible to find out whats going on!! Crazy
0
DrDave242Commented:
Please run netdom query fsmo on the 2003 R2 DC and post the results. This command will list the five FSMO roles and the current holder of each.
0
Jonas AnderssenAuthor Commented:
Heres what i did today.

I went through the Clean Up Server Metadata and completed it. It helped me to remove an additional server2 which the current domain was always pointing to that stupid server2 who doesnt exsist. So based on this instruction it helped me to delete the old orphaned dns wins data  
https://www.petri.com/delete_failed_dcs_from_ad

As soon as i was done with this i did a flushdns and register new dns commands rebooted both the current DC running win2003 and the new one running win 2012 r2 and the new server when i tried to do the prerequisites check thorgh the new server2012 r2 it did it succesfully and recognized directly the only one available DC. Everything has been done well now and i am following this instrucion to complete the whole migration!!

https://www.youtube.com/watch?v=OG5K6B7hgRU

This all was caused because the current DC has pointed an additional non-exisiting server and i removed it through the metadata commands.

Thanks to everyone of you who tried to help me ! I really appreciate everyones help and time here
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Seth SimmonsSr. Systems AdministratorCommented:
No comment has been added to this question in more than 21 days, so it is now classified as abandoned.

I have recommended this question be closed as follows:

Accept: Jonas Anderssen (https:#a42460034)

If you feel this question should be closed differently, post an objection and the moderators will review all objections and close it as they feel fit. If no one objects, this question will be closed automatically the way described above.

seth2740
Experts-Exchange Cleanup Volunteer
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Windows OS

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.