Dual Domain Controllers

A

alexbf

Hello,

We have a network configured with a Primary Domain Controller
(Win2000) and an Exchange server on another machine (Win2003). The
machine on which the PDC is installed is kinda old and is starting to
have disk problems.

Before everything comes down, I would like to install another PDC on
another machine, copy the objects of the old PDC Active Directory to
the new PDC and move the Exchange server from one domain to the other.

I have limited knowledge in domain administration so I would like to
know what is the best way to proceed?

Thanks a lot,
Alex
 
M

Myweb

Hello (e-mail address removed),

Install the new computer in your domain, run dcpromo on it and make it a
second dc. In 2000/2003 theire is no longer a pdc/bdc concept. Then you can
move the FSMO roles by hand to the new dc. Also make it DNS server and global
catalog. If everything is installed so far, run dcdiag and netdiag on the
new dc, to check everything is running without error. After that reconfigure
the clients to use the new dc as DNS server.

Best regards

Myweb
Disclaimer: This posting is provided "AS IS" with no warranties, and confers
no rights.
 
A

alexbf

Great, thanks a lot I'll try that.

But after that, do I have to move my exchange server to the new DC or
it'll be automatic? If I have to move it, how do I proceed?

Also, Is it a good idea to have my Exchange server promoted as the new
DC or I should install another machine?

Thanks,
Alex
 
M

Myweb

Hello alexbf,

You talk about a new domain. So did you have a real new domain name or will
you use the old domain name like before? If you just use the old domain name,
the exchange server is still a member of the existing domain, that's all.

Best regards

Myweb
Disclaimer: This posting is provided "AS IS" with no warranties, and confers
no rights.
 
A

alexbf

Hello,

the easiest, the better for me. If I can keep the same domain but
"change" my PDC, I'd rather do that.

So if I understand correctly :

- Install a new Win2003 Server in the existing domain
- run dcpromo
- move FSMO roles from the old DC to the new DC (How?)
- make new Win2003 server DNS and global catalog (How?)
- run dcdiag and netdiag
- shut down old DC

Is it correct?

Should I use a separate machine or it's a good idea to run dcpromo on
my existing Exchange server?

Thanks,
Alex
 
A

alexbf

Thanks a lot, everything seems to work now... the only thing I have
left to do is remove the old machine from the domain controllers
list... so my new one become the only DC in the domain.

How can I do that?

Thanks,
Alex
 
M

Myweb

Hello alexbf,

see inline

Best regards

Myweb
Disclaimer: This posting is provided "AS IS" with no warranties, and confers
no rights.
Hello,

the easiest, the better for me. If I can keep the same domain but
"change" my PDC, I'd rather do that.

So if I understand correctly :

- Install a new Win2003 Server in the existing domain
yes

- run dcpromo
Click to expand...

before dcpromo you have to run adprep /forestprep and adprep /domainprep
from the 2003 install disc on your old dc to upgrade the schema for 2003
http://technet2.microsoft.com/Windo...a8d7-4761-b38a-e207baa734191033.mspx?mfr=true
If you get any error here, post it completely that we can find a solution
- move FSMO roles from the old DC to the new DC (How?)
Click to expand...

http://support.microsoft.com/kb/324801 (applies also to windows 2000)
- make new Win2003 server DNS and global catalog (How?)
Click to expand...

open Active directory site and services, go to Sites, default first
site name, servers, choose the new one, right click NTDS settings, open properties
and checkmark Global catalog (check event viewer after it, in Directory service
you must find event id 1110 and 1119)
- run dcdiag and netdiag
Click to expand...

not only run, also check carefully for errors
- shut down old DC
Click to expand...

NO, you have to demote the old server, that it will be removed correctly
from the domain, otherwise you get a lot of replication errors in the event
viewer. To demote it, just run dcpromo on the old dc and follow the wizard,
read carefully!!!
 
M

Myweb

Hello alexbf,

MS recommends to NOT run exchange on a domain controller.

Best regards

Myweb
Disclaimer: This posting is provided "AS IS" with no warranties, and confers
no rights.
 
M

Myweb

Hello alexbf,

You're welcome.

Best regards

Myweb
Disclaimer: This posting is provided "AS IS" with no warranties, and confers
no rights.
 
H

Hank Arnold (MVP)

alexbf said:
Thanks a lot, everything seems to work now... the only thing I have
left to do is remove the old machine from the domain controllers
list... so my new one become the only DC in the domain.

How can I do that?

Thanks,
Alex
Click to expand...
It's worth pointing out that it's not a good idea to have only one DC.
If that machine crashes, you have no domain. It's a good idea to have
two DC's.

I'd strongly recommend you get new hard drive(s) for the old DC and set
it up as the second DC. Make it a GC and a DNS server as well. Leave the
other FSMOs on the new server. This will give you some breathing room in
the event the first DC has problems...

--

Regards,
Hank Arnold
Microsoft MVP
Windows Server - Directory Services
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Missing DC in ADSS Default-first-site NTDS Settings 9
Is it necessary to re-config my former PDC's Time Service settings 8
Domain Controllers Out of Sync 7
Active Directory root server problem 1
Hardware Upgrade with Active Directory 1
Global Catlog Issue 2
Convert Primary Domain Controller to a Child Domain Controller. 0
domain controller to a PDC 10

Top