Second Trust

[Guest]

Now sure if it can be done, but here it goes. I have 2 domain and let say
they are ABC (W2K3 AD) and 123 (NT4). Currently I have a trust relationship
between both domains, which is working just fine. I am planning to upgrade
the domain controller on the NT4 machine to a newer server (old and falling
apart). The reason why I want to upgrade to a newer server is that I would
like to upgrade the existing NT4 network to AD. The reason for a second
Trust is because there are database servers on the 123 domain that users on
the ABC domain needs to access. Even if I have to setup a second DC on the
ABC wouldn't be a problem but my main concern is minimal downtime.
One other idea was can I get the new server and put NT4 on it. Then put it
on the NT4 network as a BDC. Then promote it to a PDC but then will the
Trust Relationship transfer over to the new server that is running a NT4?
And the perform the upgrade? Any help will be appreciated. Thanks.

 

[Ryan Hanisco]

WooYing,

You are on the right track here. I would bring the new hardware into the
NT4 domain as a BDC. Transfer the PDC role to the new hardware and do an in
place upgrade to Windows 2000 or 2003. Now, you'll have AD with the NT4
server as a BDC.

Transfer your database to the new server. If its MS SQL, I'd say detach and
re-attach the database and Log files. If you can't have any downtime, set
up a publication relationship and transfer the user connections to the new
server. If its not MS SQL, you're on your own <G>.

From here, make sure you don't have anything mapped or dependent on the old
server (DHCP, Printers, File Sharing, other apps) and decommission the old
server.

There are other options and ways of doing this, but I think its the safest
with the smallest potential impact to your users.

 

[Guest]

Ryan thanks for your answer but one thing is that you have not answered my
question.

A) Will the Trust be there when I change my current PDC and make my new
server a PDC? Will the trust transwer? Second not sure what you meant when
you said "
Now, you'll have AD with the NT4 server as a BDC" Why would it be a BDC and
not PDC? Thanks for your help.

 

[ptwilliams]

Swapping the role of the PDC to another BDC will not effect the trusts in
place.

The NT4 BDC will still be a BDC because it is still NT4. NT 5.x boxes are
DCs. NT machines still run in the same way -they simply hold a read-only
replica of the domain database. You will be running in mixed mode active
directory until all BDCs are gone and you change the mode to Native.

--

Paul Williams

http://www.msresource.net/
http://forums.msresource.net/

Ryan thanks for your answer but one thing is that you have not answered my
question.

A) Will the Trust be there when I change my current PDC and make my new
server a PDC? Will the trust transwer? Second not sure what you meant when
you said "
Now, you'll have AD with the NT4 server as a BDC" Why would it be a BDC and
not PDC? Thanks for your help.