Link to home
Start Free TrialLog in
Avatar of manav08
manav08Flag for Australia

asked on

Having issue migrating AD from 2008R2 to 2016

Hi Experts,

I am having an issue migrating AD from 2008R2 to 2016. Please help!
The environment is simple: one server 2008R2 hosted Exchange 2010, I have managed to migrate Exchange to one server 2016, after that, I started to migrate AD to another Windows2016,
I  promoted the new server to domain controller, but when I transfer fsmo role from 2008 to 2016, a couple of things broke, the first one I noticed was Group policy, I can no longer access group policy as it pops up a window saying "the network name cannot be found" on both DC, and on the new DC, Netlogon and Sysvol was never created. The second thing it broke was Exchange, Outlook (connection status says disconnected, and there was a authentication error) was unable to connect to new exchange, and on OWA and ECP, the webpages reture "The Active Directory server is not available", some errors were captured in eventlog, please see the attachment.

I had to transfer the fsmo role back to the 2008 server,cause the new DC seemed not working properly, as soon as I transferred them back, everything started to work again. any suggestion here? did i miss anything when i promote the new DC? i followed the video here, but i read somewhere else that i should have prepad? https://www.youtube.com/watch?v=RCX_1A_-UZU
2018-04-29-12_03_04MAINSERVER1---Con.png
2018-04-29-11_59_07-MAINSERVER1---Co.png
Avatar of Adam Brown
Adam Brown
Flag of United States of America image

Have you migrated the 2008 Servers from FRS replication to DFS replication? You will need to do that before they can replicate to a 2016 DC. Also, make sure your Windows Firewalls are letting replication traffic through. Server 2008 can have some issues with the rules for AD replication not getting added properly, so try dropping the firewalls for testing and force replication from the 2008 server to the 2016 server.
Great everything is working fine on DC after reverting.

Is DC and Exchange both are on same server ?
Is it physical or virtual ? If it is virtual then take snapshot before making changes.

If you exchange migrated successfully use below links for AD migration and roles migration.

http://www.rebeladmin.com/2018/01/step-step-migration-guide-active-directory-2016-powershell-guide/

https://www.experts-exchange.com/articles/31173/How-to-Transfer-FSMO-Roles.html



Let us know your feedback on this.
Hi manav08,
Please type "net share" from new DC, You should see sysvol and netlogon.
Please check this thread. This is a similar thread.
https://www.experts-exchange.com/questions/29062986/Installed-new-DC-promoted-and-transferred-fsmo-but-new-DC-not-fuctioning.html

Thanks
MAS
ASKER CERTIFIED SOLUTION
Avatar of Mahesh
Mahesh
Flag of India image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of manav08

ASKER

Thanks Adam!

We haven't migrated the 2008 Servers from FRS replication to DFS replication yet, isnt FRS supported by 2016 still? our 2016 is version 1607.
Firewall has been turned off on both servers on Domain network. but it still seemed not working.
Avatar of manav08

ASKER

Hi Mahesh,

the sysvol is running on FRS, and the replication services on 2008 and 2016 DC are both showing "running".

i have tried FRS sysvol non authoritative restore actually, but it was after i transferred fsmo role to 2016, and i did the restore in 2016.

now that the fsmo is on 2008, I will try the restore again.
SOLUTION
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of manav08

ASKER

Thanks Mahesh! i tried auth restore on old server and non-auth restore on the new AD at the same time and it worked! now i have transferred fsmo and everything is working well, thank you so much!