Backout Active Directory

[Guest]

Is there any way to backout after going to AD?
Could I restore the 2 Domain Controllers from tape?
Could I take a BDC off-line just in case I have too many Apps that don't
like Native Mode?

 

[Danny Sanders]

Could I take a BDC off-line just in case I have too many Apps that don't

like Native Mode?

I guess you could, but native mode has nothing to do with applications. That
would not be the reson for going back to NT.


hth
DDS W 2k MVP MCSE

 

[Ryan Hanisco]

Kurt,

Are you in Crisis mode or is this a situation where you're trying to create
a cogent backout plan in case things don't go well.

Generally, I would suggest making sure that you have verifiable backups.
From there, I would take a BDC off-line and add a W2K/W2K3 server to the
domain as a member server and promote from there.

If you have segregated user and resource domains, I would do the Users
first, then work with the resource domains. This would give you the
immediate benefits to your user and workstation management and buy you some
time on testing and implementation of your apps in the AD environment.
Generally, though, applications don't have a problem with this unless they
are accessing the SAM database in NT or rely specifically on the NT os for
client server components.

 

[Guest]

But it has to do with authentication, right?

Could I also restore the DC's from a tape backup from before the switch to
Native Mode?

 

[Guest]

Hi,

Not in Crisis, but I need a plan to backuot, just in case. We are going to
Native Mode in about a month.

 

[Guest]

Sorry,

I did not say what I meant. I have already ran DCPromo. I am asking about
a backout for Native Mode.

Kurt

 

[Danny Sanders]

But it has to do with authentication, right?


Not really. It affects replication between AD DCs and NT 4.0 BDCs. It does
not affect clients of the domain.

In a native mode domain with a NT 4.0 BDC in it, you can add a user to the
AD DC and that user information will not get replicated to the NT BDC. Same
with changing passwords, etc..

hth
DDS W 2k MVP MCSE

 

[Danny Sanders]

There is no real "backout" for a Native mode domain. You would set aside a
NT 4.0 BDC before you start. If things go bad, you would not "back out" you
would actually destroy the AD domain and promote the BDC to PDC to regain
your NT 4.0 network and start the upgrade/migration all over.

hth
DDS W 2k MVP MCSE

 

[Ryan Hanisco]

Yep, Exactly right. So, bottom line, if you have a good reason to think
you'll have a problem with native mode, you really need to set up a test
environment to see the effect on your mission critical apps. At le very
least, call the apps' vendors to see if they have any known problems.