Moving FSMO roles & AD Sites & Services Bridgehead roles (IP & SMTP)???

rsnellman
rsnellman used Ask the Experts™
on
Hi, I am working migrating my FSMO roles from old Server 2008 R2 to my new Server 2016.

While in preparation, I was wondering about the AD Sites & Services Bridgehead role (IP & SMTP) for said servers.

From this forum discussion, it is automatically assigned?  And there is really no need to manually switch it?
https://social.technet.microsoft.com/Forums/WINDOWS/en-US/100af9ac-3602-4da6-b705-880ced094b6e/do-i-remove-ip-or-ip-and-smtp-in-my-bridgehead-under-sites-and-services?forum=winserverDS

However, my plan is obvious, that I am migrating everything off of my old Server 2008 R2 to my new Server 2016 in order to decommission my old Server 2008 R2 domain controller.

So, if I migrate the FSMO roles from my old Server 2008 R2 domain controller to my new Server 2016 domain controller will AD Sites and Services reflect the changes in the Bridgehead role too?  Or do I need to manually move those from my old Server 2008 R2 domain controller to my new Server 2016 domain controller?

Or do I even need to consider this part?

I do have physical domain controllers (Server 2008 R2) still at 3 branch sites.  I plan to replace them with virtual machine Server 2016 domain controllers that will reside at my main branch site, but will service the branch sites via VLAN's, etc.


If I do need to move these Bridgehead roles, should I add the roles to the new Server 2016 domain controller first then remove it from my old Server 2008 R2 domain controller or vice versa?


Thanks in advance.
Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
Director, Information Systems
Commented:
"So, if I migrate the FSMO roles from my old Server 2008 R2 domain controller to my new Server 2016 domain controller will AD Sites and Services reflect the changes in the Bridgehead role too?"
If the old server is acting as the bridgehead between sites, once it's demoted the KCC will run again and the new server will be elected as the new bridgehead.  You don't have to do anything.  You can manually configure the bridgehead if you like, but it isn't necessary.

IP is chosen for WAN connections that are "fast" and always on.  SMTP is chosen for slower and/or on-demand WAN connections.  You can change this, but you probably shouldn't.
rsnellmanIT Manager

Author

Commented:
Thanks Paul.
That's pretty nifty.

However, what if there will be three Server 2016 domain controllers (two virtual machines) and one physical (will host the FSMO roles) after demoting all of my old existing Server 2008 R2 domain controllers?

Will the Bridgehead roles go to the correct Server 2016 domain controller (aka FMSO role holder (PDC)) remaining in my AD environment?


Thanks again.
Paul MacDonaldDirector, Information Systems
Commented:
The bridgehead server doesn't need to be on a domain controller with a particular FSMO role, or any FSMO role at all.   The KCC weighs several factors including network speed and cost, and simply picks what it thinks is the best server.  

Don't read too much into the bridgehead.  As long as you have a reasonably reliable WAN connection, you won't have any issues.
Jeff GloverSr. Systems Administrator

Commented:
Echoing on what Paul said, The Ability to select a Bridgehead in AD is a relic of old days when you had really bad WAN connectivity and things like an ISDN BRI or Dialup modems were common (56K). At that time, you could have a slower link that was more reliable than a faster link but AD may not see it. So you wanted to control how you communicated between sites. With WAN speeds and reliability now, it is usually ignored. AD does a good job selecting it and an handle outages better.

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial